Compliance Consultant, CMMC

Hands-on experience implementing NIST SP 800-171 or SP 800-53 7 or more years of experience implementing cybersecurity requirements for Department of Defense contractors or federal information systems Very strong written and verbal communication skills High emotional intelligence and interpersonal skills Strong organizational and time management skills Ability to remain calm under pressure and be adaptable Ability to cross-train into other specialties Understanding of the cybersecurity product/vendor landscape and current security best practices Subject matter expertise in CMMC assessment and certification requirements (including assessment objectives up to Level 2) and DFARS 252.204-7012 requirements Awareness of U.S. export control requirements under ITAR and EAR

Document the flow of sensitive and controlled data types through existing business processes Determine a system scope for compliance Collaborate with customers, technical, and functional teams to define, document, and deliver security documentation and artifacts Assess the current implementation of applicable technical and non-technical requirements (e.g., CMMC, DFARS, FAR, export controls) Develop and manage System Security Plan(s), policies, and procedures Manage customer expectations, internal and external resources, and relevant third parties to ensure engagements are successful Develop and maintain subject matter expertise in cybersecurity data protection regulations for the U.S. Defense Industrial Base Provide ongoing advisory to clients on issues related to security and compliance Assist team members with client needs as needed