Lead CMMC readiness assessments, map controls to NIST SP 800-171 and DFARS requirements, and maintain compliance documentation (SSP, POA&M).
Oversee enterprise security policies, standards, and procedures, ensuring alignment with federal and industry regulations.
Collaborate with IT and DevOps teams to implement secure configurations across workstations, servers, CI/CD pipelines, and cloud environments.
Conduct risk assessments, vulnerability scans, and threat mitigation; lead incident response and remediation efforts.
Serve as SME during audits and assessments, coordinating evidence collection and responses.
Integrate security into projects and operations while delivering training and awareness programs across the organization.
Stay current on CMMC updates, DoD guidance, and best practices for compliance.
This position may require occasional travel when needed.
Must be able to obtain and maintain a US DOD Security Clearance.

Requirements

Bachelor’s Degree in Cybersecurity, Information Systems, or related field (or equivalent experience).
7+ years of hands-on cybersecurity experience, including implementation of security controls in small to mid-size environments.
Prior experience with CMMC 2.0, NIST SP 800-171, and DFARS compliance.
Extensive experience working with IT systems used in software engineering environments, including Windows and Linux workstations, Active Directory, Azure, and M365.
Experience writing and maintaining clear, audit-ready documentation (SSP, POA&M, policies, procedures).
Experience supporting DoD contracts or working within the Defense Industrial Base (DIB).
Familiarity with Microsoft Purview, Defender for Cloud, and other M365 compliance tools.
Experience with vulnerability management, configuration management, and secure system baselining.
Certifications such as CMMC Certified Professional (CCP), Security+, CISSP, or CISA.
Excellent communication and collaboration skills for cross-functional team environments.

Benefits

📊 Check your resume score for this job Improve your chances of getting an interview by checking your resume score before you apply. Check Resume Score

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

CMMC 2.0NIST SP 800-171DFARS compliancevulnerability managementconfiguration managementsecure system baseliningrisk assessmentsincident responseaudit-ready documentationsecurity controls implementation

Soft Skills

communicationcollaborationleadershiptrainingawareness programs

Certifications

CMMC Certified Professional (CCP)Security+CISSPCISA