Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Workstreet

Senior GRC Engineer – Government

Workstreet

Sr. GRC Engineer at Workstreet analyzing and implementing compliance frameworks like CMMC and NIST standards.

Posted 5/6/2026full-timeRemote • 🇺🇸 United StatesSeniorWebsite

Tech Stack

Tools & technologies
AWSAzureCyber Security

About the role

Key responsibilities & impact
  • Analyze and interpret CMMC requirements and NIST SP 800-171 controls to ensure client compliance with Department of Defense cybersecurity standards.
  • Develop, implement, and maintain System Security Plans (SSPs), Plans of Action & Milestones (POA&Ms), and other CMMC-required documentation.
  • Conduct gap assessments and readiness reviews for organizations pursuing CMMC certification.
  • Collaborate with defense contractors to identify and remediate gaps in their cybersecurity programs to meet CMMC Level 1 and Level 2 requirements.
  • Guide clients through the CMMC assessment process and coordinate with Certified Third-Party Assessment Organizations (C3PAOs).
  • Manage and coordinate multiple CMMC compliance projects across various defense contractors, ensuring timely completion before contract deadlines.
  • Lead and mentor a small team of compliance professionals to effectively deliver on CMMC objectives.
  • Stay current with evolving CMMC requirements, CMMC 2.0 rulemaking, and DoD cybersecurity policies.

Requirements

What you’ll need
  • Must be a US citizen or permanent resident (due to potential access to CUI).
  • 5+ years of experience in defense contractor compliance, CMMC, NIST 800-171, NIST 800-53, or FedRAMP implementation.
  • 3+ years of leadership experience managing or guiding a small team.
  • Deep understanding of CUI handling requirements and DFARS clauses (252.204-7012, 252.204-7019, 252.204-7020, 252.204-7021).
  • Experience with NIST SP 800-171 control implementation and assessment.
  • Familiarity with DoD supply chain requirements and defense contractor workflows.
  • Experience working with small to mid-sized defense contractors.
  • Knowledge of common GCC High, Azure Government, or AWS GovCloud environments.
  • Ability to obtain U.S public trust security clearance.
  • Previous experience working directly with C3PAOs or as part of assessment teams.

Benefits

Comp & perks
  • Reliable high-speed internet connection.
  • Quiet, professional home office setup.

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
CMMCNIST SP 800-171NIST 800-53FedRAMPSystem Security Plans (SSPs)Plans of Action & Milestones (POA&Ms)CUI handlingDFARS clausesgap assessmentscybersecurity compliance
Soft Skills
leadershipmentoringcollaborationproject managementcommunication
Certifications
U.S public trust security clearance