Cybersecurity SME
T-Rex Solutions, LLC
AWSCloudCyber SecuritySplunk
Cybersecurity & Compliance Analyst
CyberSheath
full-time
Posted on:
Location Type: Remote
Location: Remote • 🇺🇸 United States
Visit company websiteSalary
💰 $110,000 - $130,000 per year
Job Level
Mid-LevelSenior
Tech Stack
CloudCyber Security
About the role
- Own and lead all compliance efforts for assigned clients, acting as the primary advisor on cybersecurity compliance and regulatory alignment
- Maintain proactive communication with clients on compliance status, assessment results, and remediation
- Deliver regular updates through executive briefings, business reviews, and detailed reporting
- Lead and execute compliance assessments (e.g., DFARS, NIST 800-171, and CMMC Maturity Level 2)
- Perform annual assessments and ensure evidence-based control
- Lead the implementation and continuous monitoring of compliance frameworks (e.g., NIST SP 800-171, CMMC)
- Develop and manage System Security Plans (SSPs) and Plans of Action & Milestones (POA&M) for clients
- Guide clients through internal and external audits, ensuring all necessary evidence, documentation, and artifacts are in place for successful certification
- Collaborate with clients to develop, update, and maintain compliance documentation, including policies, procedures, SSPs, POA&Ms, and other governance materials
- Ensure compliance policies and procedures aligned with NIST 800-171, CMMC, and DFARS
- Provide expertise in drafting and maintaining control documentation
- Develop and maintain incident response plans
- Conduct tabletop exercises with clients to test incident response readiness and improve incident management capabilities
- Perform regular risk assessments to identify compliance gaps and develop mitigation strategies
- Maintain risk registers and ensure continuous improvement of compliance postures
- Deliver or facilitate client training programs, including basic security awareness, privileged user training, and handling of Controlled Unclassified Information (CUI)
Requirements
- Broad understanding of systems and security engineering principles
- Ability to build and troubleshoot systems (e.g., servers, Active Directory)
- Understanding of network fundamentals, cloud technologies (IaaS, PaaS, SaaS), and cybersecurity
- Experience within the Defense Industrial Base (DIB), with expertise in assessing compliance for DIB contractors
- Direct, hands-on experience with NIST 800-171, CMMC, DFARS 252.204-7012
- Must have led compliance assessments and demonstrated independent leadership of audits or regulatory
- CMMC Certified Assessor, CISSP, CISM, or other relevant cybersecurity certifications
Benefits
- Health insurance
- 401(k) matching
- Flexible work hours
- Paid time off
- Remote work options
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
cybersecurity complianceregulatory alignmentcompliance assessmentsNIST 800-171CMMCDFARSSystem Security Plans (SSPs)Plans of Action & Milestones (POA&M)incident response plansrisk assessments
Soft skills
communicationleadershipcollaborationtraining facilitationproblem-solvingorganizational skillsclient managementanalytical thinkingattention to detailproactive engagement
Certifications
CMMC Certified AssessorCISSPCISM
