CMMC Lead

2 months ago

Richardson, United States Vantage Consulting Full time

CMMC Lead

Richardson, TX (on-site)


The CMMC Lead will drive CMMC compliance efforts, providing expert guidance on security requirements, and supporting organizations through the certification process. This role involves conducting assessments, advising on risk mitigation, and mentoring team members in compliance processes.


Responsibilities:

  • Participate and drive the development of policies, procedures, and documentation relating to CMMC compliance.
  • Develop project plans outlining tasks, timelines, and resource requirements.
  • Develop a Plan of Action and Milestones (POA&M) for the remediation of organization-wide weaknesses, ensuring a systematic and prioritized approach.
  • Provide guidance and training to team members on CMMC best practices.
  • Create detailed information security policies and procedures to ensure compliance with various standards, including NIST 800-171A, DFARS, CUI, CMMC, and ISO 27001/2.
  • Lead internal information security risk and compliance assessments, audits, gap analyses, and remediation planning.
  • Actively contribute to projects with a primary focus on CMMC, FedRAMP, StateRAMP, NIST 800-53, FISMA, and NIST 800-171.
  • Communicate with and present to project stakeholders to effectively convey requirements of technical and process improvements.
  • Assist in the development of customized policies, procedures, controls, disaster recovery plans and technical documentation for applications, systems, and infrastructure.


Qualifications:

  • Degree: Bachelor's degree in Cybersecurity, Information Technology, or a related field.
  • Experience: Minimum of 5 years of experience in cybersecurity compliance or a similar role.
  • Experience implementing, monitoring, and managing security measures & compliance for CUI and FCI.
  • Deep understanding of CMMC framework, NIST SP 800-171, NIST SP 800-172, ITAR requirements, and federal security compliance requirements.
  • Proficiency with IT-GRC tools and cloud security platforms.
  • Strong analytical, problem-solving, and communication skills.
  • Knowledge of Foreign Ownership, Control, or Influence (FOCI) rules.
  • Experience with Controlled Unclassified Information (CUI) and ITAR compliance.
  • Clearance: Position requires TS and ability to obtain SSBI (including polygraph).
  • Applicants must be a US citizen