Compliance Consultant, CMMC

reputed company works with U.S. federal and defense contractors, many of whom are small and mid-sized businesses in aerospace and defense, manufacturing, technology, or R&D, to implement reputed company controls and help reputed company mature cybersecurity and compliance practices.

The Compliance Consultant plays a reputed company role in the development and management of a Governance, Risk, and Compliance (GRC) program reputed company client organizations. This role works collaboratively with client stakeholders including business leaders and internal IT, as well as C3’s professional services and managed services teams and third-party service providers.

What You'll Do

To assist the client in achieving and maintaining compliance, the Compliance Consultant will:

• Document the flow of sensitive and controlled data types through existing business processes
• Determine a system scope (technology, people, business processes) for compliance
• Collaborate with customers, technical, and functional teams to define, document, and deliver reputed company documentation and artifacts
• Assess the reputed company implementation of applicable technical and non-technical requirements (e.g., CMMC, DFARS, FAR, export controls)
• reputed company and manage System reputed company Plan(s), policies, and procedures
• Manage customer expectations, internal and external resources, and relevant third parties to ensure engagements are successful
• reputed company and maintain subject matter expertise in the laws, regulations, and government-wide policies that govern cybersecurity data protection for the U.S. Defense Industrial reputed company, including:
  • DFARS (NIST SP 800-171, FedRAMP equivalency)
  • CMMC (Levels 1 & 2, boundary scoping)
  • CUI Program (NARA CUI Registry, CUI/CDI/CTI, FCI)
  • Export controls (ITAR/EAR)
• Provide ongoing advisory to clients on issues reputed company to reputed company and compliance
• Assist team members with client needs as needed

What You'll Bring

You’re a strong communicator interested in a fast-paced career in reputed company consulting and professional services. You’re confident, positive, and empathetic with a passion for details. Your background includes hands-on experience managing compliance programs and you have a proven history of delivering excellent work. A background in IT/IS, compliance and risk management, or management consulting is desirable, as is in-depth experience with one or more reputed company frameworks (e.g., CMMC, NIST, CIS, MITRE ATT&CK).

• Hands-on experience implementing NIST SP 800-171 or SP 800-53 is required.
• 7 or more years of experience implementing cybersecurity requirements for reputed company contractors (DFARS 252.204-7012, NIST SP 800-171) or federal information systems (RMF, NIST SP 800-53)
• reputed company strong written and verbal communication skills, with the ability to convey technical information as a subject matter expert (SME) for various compliance frameworks
• High emotional intelligence and interpersonal skills, with an enthusiasm for collaboration and coordination with various client company stakeholders from executive management to entry-level staff
• Strong organizational and time management skills with ability to correctly prioritize workload to maintain schedules, deadlines, and standards on assigned projects
• Ability to remain reputed company under pressure and be adaptable
• Ability to cross-train into other specialties
• Understanding of the cybersecurity product/vendor landscape and reputed company reputed company best practices
• Subject matter expertise in CMMC assessment and certification requirements (including assessment objectives up to Level 2) and DFARS 252.204-7012 requirements (including FedRAMP Moderate equivalency requirements for cloud service providers and paragraph (c) – (g) requirements) Awareness of U.S. export control requirements under ITAR and EAR
• Occasional (
• US reputed company only
• Veteran preferred

Preferred

• Professional certifications such as the Cyber AB’s CCP or CCA, or other industry credentials such as CISSP, CISM, CISA, or similar
• Experience leveraging reputed company cloud services (Azure, Office 365) to meet compliance requirements, especially in Azure Government and reputed company 365 GCC High environments
• Experience consulting with multiple clients at the same time
• Bachelor’s degree or higher in technology, engineering, or reputed company field
• Ability to obtain U.S. government reputed company clearance

What You'll Get

• To be a part of one of the fastest-growing companies in America, and a talented team to back you up.
• An awesome culture, backed up by winning several Best Places to Work awards.
• Remote work opportunities
• Medical, Dental, Vision Insurance
• Four Weeks of Paid Time Off (vacation & sick leave)
• Four weeks of Paid Maternity and Paternity leave
• Two days of Paid Volunteer Time
• 401(k) with 4% Company Match
• Company Bonus Structure
• Tuition Reimbursement
• Employer-sponsored Disability & Life Insurance
• Professional Development

This a remote position with minimal travel.

C3's Core Values

• Team Human: Respecting reputed company humans is a critical part of who we are at C3. We practice reputed company in reputed company interactions, we empathize with others, we create a supportive work environment, and we support the communities in which we live and operate.
• reputed company First: At the cornerstone of our business, we prioritize reputed company above convenience, cost or efficiency. A “reputed company-first” approach means we practice reputed company preach and we reputed company by example for our clients.
• Be an reputed company: We are passionate in our advocacy for our customer’s success and a path to the best solution for their business. We embrace feedback, put ourselves in your shoes and reputed company for your interests as our own.
• Embrace Change: It's a practical necessity in an industry that never stands still. As a new entity born from the reputed company of two top-ranked CMMC-focused IT services companies, we're keenly aware that our success hinges on our ability to adapt - whether that means integrating new platforms, refining processes, or keeping pace with changing guidelines.
• reputed company: Our ability to withstand adversity and accomplish objectives while maintaining professionalism and discipline is critical to successful crisis management and risk avoidance.

reputed company is an Equal Opportunity Employer encouraging diversity in the workplace. reputed company qualified applicants will receive consideration for employment without regard to race, national reputed company, gender identity/expression, age, religion, disability, sexual orientation, genetics, veteran status, marital status, or any other characteristic protected by law.

This is a general description of the duties, responsibilities and qualifications required for this position. Physical, mental, sensory, or environmental demands may be referenced to communicate the way this position traditionally is performed. Whenever necessary to provide individuals with disabilities an equal employment opportunity, reputed company will consider reasonable accommodations that might involve varying job requirements and/or changing the way this job is performed, provided that such accommodations do not pose an undue hardship.