Apply on Employer Site

PKF O'Connor Davies · 2 weeks ago

Manager, Cybersecurity & Privacy Advisory Practice (CMMC / DIB Focus)

Shelton, CT

Full-time

Hybrid

Mid, Senior Level

5+ years exp

PKF O’Connor Davies is a top-ranked accounting, tax, and advisory firm that provides exceptional service while fostering long-term relationships built on trust and integrity. The Manager of Cybersecurity & Privacy Advisory will lead and execute engagements supporting clients within the Defense Industrial Base, focusing on CMMC readiness, assessments, and program improvement.

AccountingAdviceConsultingFinancial Services

No H1B

U.S. Citizen Only

Responsibilities

Lead and manage cybersecurity advisory engagements for DIB clients, focusing on CMMC readiness, assessment, and program improvement

Conduct and oversee CMMC assessments in accordance with DoD and Cyber AB standards

Evaluate, develop, and maintain System Security Plans (SSPs), Plans of Action and Milestones (POA&Ms), and Security Assessment Reports (SARs)

Perform gap analyses and control assessments against NIST SP 800-171, NIST SP 800-53, NIST CSF, and ISO 27001, identifying realistic paths to compliance and maturity

Guide clients through DFARS 252.204-7012/7019/7020/7021 compliance requirements and related DoD contracting cybersecurity obligations

Assist in developing cybersecurity governance frameworks and inheritable control matrices that align with clients’ business and regulatory requirements

Participate in internal development of firm CMMC methodologies, templates, and training materials

Work on other engagements across the Cybersecurity & Privacy Advisory team as needed

Support proposal efforts and practice growth activities, emphasizing practical, right-sized solutions over theoretical approaches

Mentor staff, promote knowledge sharing, and contribute to a collaborative and learning-oriented team culture

Qualification

CMMC Certified AssessorNIST 800-171NIST 800-53DFARS complianceCISSP certificationCISA certificationISO 27001Analytical skillsCommunication skillsProblem-solving skillsProject management

Required

Bachelor's degree in Information Systems, Cybersecurity, or a related discipline (Master's preferred)

5+ years of cybersecurity consulting or compliance experience, including work with DIB or federal-sector clients

Active CMMC Certified Assessor (CCA Tier 3) certification

Active CISSP or CISA certification (required)

Strong knowledge of NIST SP 800-171, NIST SP 800-53, NIST CSF, and ISO 27001 frameworks

Hands-on experience developing and reviewing SSPs, POA&Ms, and SARs

Familiarity with DFARS and DoD cybersecurity compliance workflows

Exceptional communication and analytical skills with the ability to convey technical information clearly to both technical and non-technical audiences

Managing multiple projects simultaneously while maintaining attention to detail and quality

Building trusted relationships with clients and team members through transparency, accountability, and responsiveness

Demonstrating strong analytical, critical thinking, and problem-solving skills

Adapting quickly to changing requirements, demonstrating flexibility and resilience in complex client environments

Contributing to a culture of collaboration, professional growth, and continuous learning

Communicating clearly and concisely, both in writing and verbally, producing deliverables that are actionable and client-focused

Maintaining professionalism and discretion when handling sensitive information