Security and Compliance Analyst
About The Position
KTL Solutions is here to offer the opportunity for aspiring cybersecurity compliance specialists to make a name for themselves in the defense contractor space as a talented and knowledgeable subject matter expert on NIST and CMMC related services. The work we do is crucial for the US defense industrial base to align with NIST SP 800-171 and CMMC requirements that assist them in managing risks from cyber threats and provides them with opportunities to showcase their cybersecurity maturity for potential opportunities in working within the DoD supply chain. Our support staff, sales team and technicians are all coming together to make a difference. We also recognize that you're a person with life beyond work, that's why we invest in these meaningful health and welfare benefits: Health Benefits (Health, Vision, and Dental) Expense reimbursement Paid certification training 401k with company match Company laptop Remote and/or in office availability 4 weeks of PTO Quarterly bonuses Essential Functions The Security and Compliance Analyst assist our clients in meeting key cybersecurity compliance initiatives including NIST SP 800-171 compliance and CMMC certification relating to documentation preparation, readiness, and assessment activities.
Requirements
- CMMC Certified Professional (CCP) with favorable T3 background clearance.
- Understanding of CMMC 2.0, NIST SP.800-171, NIST SP.800-171A, NIST SP.800-53, NIST SP.800-53A, FedRAMP Moderate and/or other similar regulations and industry standards with the proficiency to rapidly retain a deeper understanding of the requirements
- Strong interpersonal communication skills and curiosity to continuously learn
- Excellent organizational skills with ability to prioritize project workloads
- Proficient in Microsoft Office Online/Microsoft 365 (Word, PowerPoint, Excel, Outlook)
- Creative and innovative thinking, problem solving and analytical skills
- Possess strong customer service skills and customer-focused mindset
- Must maintain a high degree of integrity, confidentiality, and privacy
- Working understanding of IT and Infrastructure acronyms and definitions
Nice To Haves
- Preference for candidates that hold an intermediate certification required to be a CMMC Certified Assessor (CCA) - https://cyberab.org/CMMC-Ecosystem/Ecosystem-Roles/Assessing-and-Certification
- Bachelor’s degree in information technology, communications, and/or related fields or a combination of industry certifications (e.g. – Security+, A+, Network+, or various Microsoft Cloud certifications) and experience that equates to that knowledge
- Experience with technical, procedure, and policy writing
Responsibilities
- Review, develop, update, and/or maintain cyber security documentation which may include policies, procedures, documentation, and checklists
- Assist in the development and maintenance of System Security Plans, Plans of Action and Milestones (POA&Ms)
- Participate in security assessments including the coordination, evaluation of on premises and cloud environments, collection of evidence and artifacts, and documenting results
- Work collaboratively with internal teams to maintain applied knowledge of NIST SP 800-171, DFARS 252.204-7012, CMMC 2.0, FedRAMP, NIST SP 800-53 and other associated standards and regulations
- Leverage growing knowledge and expertise to problem solve areas of concern for clients and collaborating to provide cost effective solutions or processes to meet the intent of requirements
- Other duties as assigned
Benefits
- Health Benefits (Health, Vision, and Dental)
- Expense reimbursement
- Paid certification training
- 401k with company match
- Company laptop
- Remote and/or in office availability
- 4 weeks of PTO
- Quarterly bonuses
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
