Apply on Employer Site

General Micro Systems · 1 month ago

IT Director & CMMC Compliance Lead

Rancho Cucamonga, CA

Full-time

Onsite

Lead/Staff, Director/Executive

5+ years exp

General Micro Systems is a leader in the embedded computing market, known for their innovative products and commitment to quality. The IT Director & CMMC Compliance Lead is responsible for the strategic development and daily operation of the organization’s IT landscape, ensuring compliance with CMMC 2.0 and NIST SP 800-171 requirements while protecting Controlled Unclassified Information (CUI). This role involves leading compliance initiatives, managing IT operations, and developing cybersecurity policies.

ComputerConsumer ElectronicsElectronicsManufacturing

No H1B

U.S. Citizen Only

Responsibilities

Develop and execute an enterprise-wide IT strategy that aligns business goals and federal regulatory requirements, including CMMC

Lead the organization’s CMMC compliance initiatives, ensuring adherence to NIST SP 800-171 standards and serving as the primary liaison for external CMMC Third-Party Assessor Organizations (C3Paos) and government agencies

Develop, implement, and enforce comprehensive cybersecurity policies, incident response plans, and system security plans (SSPs) to protect CUI

Conduct regular gap assessments and risk analysis to identify vulnerabilities and manage the Plan of Action and Milestones (POA&Ms) to remediate identified deficiencies and maintain compliance

Manage the IT budget, vendor relationships, and resource allocation for all technology initiatives and security tools

Oversee daily IT operations, including network and telecommunications management, system security, and backup and recovery plans

Perform hands-on system administration, including manage Windows Linux Server environments, virtualized platforms, Microsoft 365, Active Directory, and endpoint security solutions

Install, configure, and maintain IT equipment (laptops, servers, printers, network hardware) and networks, ensuring secure configurations and patch management are in place

Administer user accounts and access controls based on least privileged principles and security policies, performing regular audits of user records

Monitor system performance and network traffic to identify potential security threats or vulnerabilities and troubleshoot hardware/software issues

Manage and maintain robust backup and disaster recovery procedures, conducting regular testing to ensure data integrity and availability

Provide end-user support and training on IT tools, cybersecurity awareness, and best practices, ensuring staff adhere to security policies

Qualification

CMMC complianceNIST SP 800-171Cybersecurity policiesIT strategy developmentWindows Server managementNetwork managementRisk managementIncident response planningMicrosoft 365Communication skillsCritical thinkingProblem-solvingTeam leadership

Required

Bachelor's degree in information technology, Cybersecurity, or a related field, or equivalent relevant experience

5+ years of combined experience in IT Administration and IT management roles

Proven experience with CMMC compliance, NIST SP 800-171, and DFARS requirements are essential

Deep technical knowledge of networking infrastructure, server management, security protocols (e.g., TCP/IP, DNS, DHCP), cloud services

Strong knowledge of risk management processes, security auditing, and incident response planning

Excellent communication skills with the ability to bridge the gap between technical teams, management, and external auditors

Must possess the ability to successfully plan, prioritize, and organize work activities and adhere to strict deadlines, follow instructions, procedures, and policies; identify and solve problems

Must be able to demonstrate effective critical thinking skills

Must be conscientious about assignments and complete work in a timely, accurate and thorough manner

Require minimal supervision to successfully complete tasks and assignments

Must demonstrate initiative and ownership of assignments/projects

Must exhibit professional appearance and behavior and maintain satisfactory performance consistent with expectations of the position and GMS policies

Requires excellent communication skills, both verbally and in writing with executives, colleagues, and individuals, internal or external

Must possess strong people skills, able to effectively interact with all levels of employees and management

Must remain poised, professional, and diplomatic under pressure

Computer skills with a working knowledge of programs such as Microsoft Word, Excel, Outlook

Must possess the ability and desire to encourage and facilitate a positive and productive work environment for all employees

Must report to work at scheduled time and maintain satisfactory attendance with limited unscheduled absences

Must be able to work on-site the standard 8AM-5PM, Monday - Friday

Limited travel required

Must be a US Citizen, Permanent US Resident, or currently authorized to work in the U.S. on a full-time basis without current or future employment sponsorship

In compliance with federal law, all persons hired are required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification form upon hire

Post offer applicants must pass a drug screen test

If required, you must pass a background check and/or have the ability to obtain and maintain Security Clearance