Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Hotman Group, LLC

CMMC / NIST Consultant, Analyst

Hotman Group, LLC

CMMC / NIST Consultant at Hotman Group providing cybersecurity consulting for federal compliance frameworks. Engaging in client delivery work with a focus on documentation and project movement.

Posted 5/15/2026contractRemote • Texas • 🇺🇸 United StatesMid-LevelSeniorWebsite

Tech Stack

Tools & technologies
Cyber Security

About the role

Key responsibilities & impact
  • Support client engagements related to CMMC readiness, implementation, and documentation
  • Develop, update, and maintain System Security Plans
  • Assist with NIST SP 800-171, NIST SP 800-53, and FedRAMP documentation, control mapping, and related deliverables
  • Gather, organize, and review evidence supporting control implementation
  • Support CUI scoping discussions, boundary definition, and enclave design
  • Draft and refine control narratives, policies, procedures, and related compliance documentation
  • Identify gaps and support development of POA&Ms and remediation tracking
  • Work directly with client stakeholders to collect information, validate details, and keep deliverables moving
  • Contribute to readiness efforts tied to assessments, documentation, and ongoing compliance activities
  • Participate in peer review of deliverables before they go to clients — your work will be reviewed and you will review others

Requirements

What you’ll need
  • 3 to 5 years of relevant experience in GRC, cybersecurity compliance, or related consulting work
  • Hands-on experience with CMMC-related work -- this is required, not a nice to have
  • Direct experience developing or contributing to System Security Plans, evidence collection, remediation documentation, and compliance policies -- also required
  • Familiarity with NIST SP 800-171, NIST SP 800-53, and FedRAMP
  • Strong writing and documentation skills -- your deliverables are clear, accurate, and do not require heavy editing before they go to a client
  • The ability to work directly with client stakeholders, gather information, manage follow-through, and keep work moving
  • Strong organization and professionalism in a client-facing environment
  • Comfort stepping into projects that are already in motion and contributing independently with minimal ramp-up time
  • A default toward communication — you keep the team informed, you acknowledge quickly, and you do not go dark on a deliverable or a client
  • Experience supporting CMMC Level 2 efforts, CUI scoping, enclaves, or boundary discussions is a strong plus.
  • Familiarity with POA&Ms, assessment readiness, and control crosswalks is also valued.
  • Active certifications such as CCP, CCA, CISSP, CISM, or CISA are preferred. If you do not currently hold a relevant certification, we expect you to be actively pursuing one.
  • Permanent authorization to work in the U.S. -- no sponsorship of any kind now or in the future.
  • Able to pass a background check

Benefits

Comp & perks
  • Reliable high-speed internet and a secure, private remote workspace

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
CMMCSystem Security PlansNIST SP 800-171NIST SP 800-53FedRAMPevidence collectionremediation documentationcompliance policiescontrol mappingPOA&Ms
Soft Skills
writing skillsdocumentation skillsorganizationprofessionalismcommunicationclient engagementindependent contributioninformation gatheringfollow-throughpeer review
Certifications
CCPCCACISSPCISMCISA