REGULATORY & COMPLIANCE MANAGER

About The Position

Requirements

• 5-10+ years of experience in defense-sector compliance, cybersecurity, export controls, or related governance roles.
• Strong understanding of ITAR, EAR, CMMC 2.0, NIST 800-171, and DFARS 7012/7019/7020/7021.
• Experience creating policies, procedures, and training content.
• Demonstrated ability to perform controlled-information classification and export-control evaluations.
• Strong written and verbal communication skills, with the ability to clearly convey quality requirements, findings, and corrective actions to technical and non-technical audiences.
• Highly organized and detail-oriented, with the ability to manage multiple priorities while maintaining accuracy and compliance.
• Self-directed with the ability to work independently, while also collaborating effectively across departments and organizational levels.
• Demonstrated ability to build and maintain productive working relationships with internal stakeholders.
• Strong analytical, critical-thinking, and problem-solving skills, including the ability to assess systems and processes, identify gaps or risks, and implement effective solutions.
• Ability to perform effectively in a fast-paced, deadline-driven environment and manage competing demands with professionalism.
• Ability to handle pressure and ambiguity while maintaining focus, sound judgment, and adherence to quality standards.
• Bachelor’s degree in business, cybersecurity, information systems, or related field.
• U.S. Citizenship Required: As a federal contractor supporting the U.S. warfighter, it is required that all employees in this role be United States citizens in compliance with government contract and security requirements.
• Background Check: Must be able to successfully pass an initial background screening.
• Security Clearance: Must be able to obtain and maintain an active Department of Defense (DoD) security clearance. The selected candidate will be subject to a government security investigation and must meet eligibility requirements for access to classified information, as required by the position.
• Work Schedule Flexibility: Occasional overtime and alternate shifts may be required to meet customer schedules, critical deadlines, or program milestones.
• Travel Requirements: Must be able and willing to travel domestically and, on occasion, internationally to customer sites, partner locations, or project meetings in support of contract objectives.
• Drug-Free Workplace: ASI maintains a Drug-Free Workplace. Applicants and employees are subject to pre-employment and random drug testing in accordance with company policy.
• Employment Contingency: All employment offers are contingent upon the successful completion of all background checks, security clearance requirements, and drug-screening results.

Nice To Haves

• Experience supporting DoD contracts as part of a DIB contractor.
• Familiarity with ISO 9001/AS9100, quality systems, and configuration management.
• Compliance-centric certifications such as CMMC Certified Professional (CCP), Certified Compliance & Ethics Professional (CCEP), Certified Information Privacy Professional (CIPP/US), or similar.
• Existing security clearance or clearance eligibility.

Responsibilities

• Serve as the company’s subject matter expert on ITAR, EAR, CMMC, DFARS cybersecurity clauses, and DoD-specific controlled information categories.
• Develop and maintain corporate policies, operating procedures, standards, and guidance related to data protection, export controls, and information governance.
• Maintain a regulatory intelligence function tracking changes to relevant U.S. government requirements, industry trends, and enforcement actions as well as assessing potential impact to company operations and programs.
• Lead classification and marking reviews for CUI, CTI, ITAR/EAR technical data, and company proprietary information.
• Establish and administer processes for data handling, storage, transmission, and access authorization consistent with government and corporate requirements.
• Work with engineering, program management, quality, operations, and HR to embed classification controls into daily workflows and business processes.
• Develop annual and role-based training programs for CUI, export controls, cybersecurity compliance, and sensitive data handling.
• Deliver instructor-led training as needed to maintain training records to support audit readiness and compliance verification.
• Support internal readiness assessments for CMMC and NIST 800-171.
• Participate in program reviews, contract kickoff meetings, and export-related technical reviews to identify and address compliance risks early.
• Conduct periodic audits of data storage locations, document repositories, and file-sharing platforms to ensure compliance with information handling requirements.
• Provide guidance on jurisdiction and classification (USML/ECCN) for technical data and defense articles.
• Coordinate with legal counsel on export license requirements and technology control plans (TCPs).
• Enforce access restrictions and ensure adequate technical safeguards for export-controlled information.
• Partner with HR, IT, Security, Engineering, Operations, and Program Management to integrate compliance requirements within business processes.
• Serve as point of contact during audits, inspections, and external assessments.
• Support incident response involving potential mishandling of controlled information.

Benefits

• flexible work environment
• generous paid time off
• professional development opportunities
• industry competitive compensation
• superior benefits to include medical, dental, 401k and more!