Cybersecurity Compliance Manager (CMMC/DIB)

nTop

7h•$144,837 - $174,052

About The Position

Engineering teams face an impossible reality: deliver more complex products faster, with fewer experts, and zero tolerance for failure. nTop changes how engineering gets done. Our technology collapses months of iteration into hours, letting teams explore thousands of variants instead of settling for the first option. Teams reduce development time by 50% and increase program win rates. Leaders choose nTop when failure isn't an option. nTop is hiring a Cybersecurity Compliance Manager (CMMC/DIB focus) to facilitate the design and day-to-day operation of nTop’s cyber compliance program to enable responsible growth across its national security customer base. This is a cross-functional role that is part of the Information Security team and partners closely with Legal, Engineering, Business Development, and leadership on interpretation, escalation, and resolution of novel or high-risk issues. This individual will bring hands-on experience in Cybersecurity Maturity Model Certification “CMMC” Level 1, 2, and 3 assessments, NIST 800-171 / 800-53 / RMF implementation, and DFARS compliance. The ideal candidate is a CMMC certified professional who demonstrates strong understanding of federal cybersecurity frameworks and programmatic risk management. This New York-based role reporting to the Chief Governance Officer requires practical judgment, technical fluency, and the ability to translate complex compliance requirements into achievable, measurable program outcomes.

Requirements

Bachelor’s degree in Information Systems, Cybersecurity, or a related discipline.
4-6 years of direct cybersecurity or compliance experience, including work related to DIB or federal-sector customers/employer(s).
Active CMMC certification or ability to obtain one within a year.
Strong knowledge of NIST SP 800-171, FedRAMP and other relevant security frameworks.
Hands-on experience developing and reviewing SSPs, POA&Ms, and SARs.
Familiarity with DFARS and DoW cybersecurity compliance workflows.
Exceptional communication and analytical skills with the ability to convey technical information clearly to both technical and non-technical audiences.
Managing multiple projects simultaneously while maintaining attention to detail and quality.
Building trusted relationships with team members through transparency, accountability, and responsiveness.
Demonstrating strong analytical, critical thinking, and problem-solving skills.
Communicating clearly and concisely, both in writing and verbally.
Maintaining professionalism and discretion when handling sensitive information.
Ability to handle export controlled/sensitive government-related information; willingness and eligibility to obtain a U.S. security clearance in the future.

Responsibilities

Under the direction of the CGO and the Director of Information Security, manage the company’s cybersecurity and CMMC readiness, assessment, and program improvement.
Conduct and oversee CMMC assessments in accordance with DoW standards.
Evaluate, develop, and maintain System Security Plans (SSPs), Plans of Action and Milestones (POA&Ms), and Security Assessment Reports (SARs).
Provide guidance and set up relevant controls for compliance with the DoD Manual 5220.22-M (National Industrial Security Program Operating Manual (NISPOM))
Collaborate with third party auditors on performing gap analyses and control assessments against NIST SP 800-171, identifying realistic paths to compliance and maturity.
Provide guidance on DFARS 252.204-7012/7019/7020/7021 compliance requirements and related DoW contracting cybersecurity obligations.
Assist in developing cybersecurity governance frameworks and inheritable control matrices that align with nTop’s developing business and regulatory requirements.
Participate in developing internal training and awareness exercises for the company staff.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume