Associate Compliance Consultant, CMMC

About The Position

Requirements

• 0–3 years in cybersecurity/compliance/IT audit/IT ops or relevant internships/coursework/projects.
• Clear, concise writing and professional client communication skills.
• Strong organization and follow-through; comfortable managing checklists, evidence, and deadlines across multiple clients.
• Working knowledge of core security/compliance concepts (access control, logging, vulnerability management, incident response).
• U.S. work authorization and ability to handle sensitive, client-confidential information.
• Awareness of U.S. export control requirements under ITAR and EAR
• Occasional (<10%) travel to various work sites throughout the U.S. may be required

Nice To Haves

• Familiarity with NIST SP 800-171, DFARS 252.204-7012, CMMC v2 concepts.
• Experience with Microsoft 365/Azure security features; exposure to GCC High/Azure Government is a plus.
• Comfort with GRC/evidence tools, ticketing/project tools, and diagramming using industry standard applications.
• Industry certifications in progress or held (e.g., Cyber AB RP/CCP, Security+) or a plan to pursue CCP within 6–12 months.
• Bachelor’s degree in cybersecurity, information systems, engineering, or related field (or equivalent experience).

Responsibilities

• Document & scope: Support mapping data flows for FCI/CUI; assist in defining system scope (people, processes, technology) for assessments.
• Assess & track: Support readiness assessments against NIST SP 800-171/CMMC L1–L2; collect artifacts; log gaps and actions in POA&Ms.
• Author & maintain: Draft and update sections of System Security Plans (SSPs), policies, procedures, and diagrams using C3 templates.
• Evidence management: Organize client evidence in approved repositories; keep versioning and status current.
• Client coordination: Schedule/record working sessions; capture meeting notes, actions, and owners; follow up on actions to keep timelines on track.
• Advisory support: Reach out to team members with questions; escalate risks and blockers promptly.
• Tooling & hygiene: Use project/ticket tools (e.g., Asana/ConnectWise), GRC platforms (e.g., FutureFeed/Hudu), MS 365, and Copilot to keep work visible and auditable.
• Quality & consistency: Apply C3 formatting and naming standards; ensure deliverables are clear, complete, and client-ready.

Benefits

• To be a part of one of the fastest-growing companies in America, and a talented team to back you up.
• An awesome culture, backed up by winning several Best Places to Work awards.
• Remote work opportunities
• Medical, Dental, Vision Insurance
• Four Weeks of Paid Time Off (vacation & sick leave)
• Four weeks of Paid Maternity and Paternity leave
• Two days of Paid Volunteer Time
• 401(k) with 4% Company Match
• Company Bonus Structure
• Tuition Reimbursement
• Employer-sponsored Disability & Life Insurance
• Professional Development