Compliance Analyst - (Hybrid)

About The Position

Requirements

• Proof of U.S. citizenship before hire.
• At least 3 years of experience in the Defense Industrial Base as a compliance analyst or related position.
• Possess a strong technical background and understanding of the “How” for NIST controls and not just the “What”
• Hold a CMMC RP, CCP or CCA certification
• Be detail oriented, process driven, and well organized
• Have worked for or with an MSP (Managed Service Provider)
• Work Well as a team, but also able to maintain motivation when working individually.
• Be comfortable speaking and/or presenting to clients and team members
• Have professional level verbal and written communications skills
• Possess a familiarity with NIST Risk Management Framework and CMMC compliance
• Be a self-starter, someone who is always looking to see where they can help.

Responsibilities

• Work directly with IsI Enterprises client stakeholders throughout their onboarding and compliance gap assessment.
• Lead and manage a team of analysts through NIST 800-171a gap assessment and remediation projects.
• Review client environments and collect evidence to determine the satisfaction of CMMC/NIST controls
• Assist clients in the formulation of a compliant set of policies and procedures.
• Complete documentation required for a compliance assessment (Network Design Documents, Software Whitelist, etc)
• Recommend solutions to remediate identified gaps in compliance.
• Work directly with our Cybersecurity, Engineering, and Support departments to ensure all configurations are completed and tested in a compliant manner.
• Generate POAM’s (Plan of Action and Milestone) documents for the remediation of found gaps
• Generate SSP (System Security Plan) documents to reflect deployed tools and assessment results
• Interface directly with C3PAO auditors during CMMC Level 2 Audits

Benefits

• A competitive salary and benefits package
• Professional growth encouragement and support