MM International, LLC · 13 hours ago
Senior FedRAMP / CMMC Security & Compliance Engineer
United States
Contract
Remote
Senior Level, Lead/Staff
8+ years expMM International, LLC is seeking a Senior FedRAMP / CMMC Security & Compliance Engineer to lead hands-on compliance execution across federal and defense-aligned environments. The role involves translating FedRAMP and CMMC requirements into practical implementations, owning control mapping and assessment readiness, and collaborating with various teams to ensure compliance is effectively managed.
Staffing & Recruiting
No H1B
U.S. Citizen Only
Responsibilities
Lead hands-on execution of FedRAMP and CMMC compliance initiatives, with primary ownership of control mapping, implementation alignment, and assessment readiness
Translate FedRAMP (NIST 800-53) and CMMC / NIST 800-171 requirements into concrete technical and operational controls across cloud and system environments
Own and maintain control mappings, ensuring accuracy, traceability, and alignment between framework requirements and real-world implementations
Partner with engineering, DevOps, IT, and security teams to deploy and enforce security controls—not just document them
Develop and maintain compliance artifacts including SSPs, control narratives, implementation statements, and supporting documentation
Design and drive evidence strategy and collection processes to ensure artifacts are complete, defensible, and aligned with assessor expectations
Serve as a senior point of accountability during readiness reviews, assessments, and stakeholder discussions
Identify compliance gaps, risks, and ambiguities early; drive structured remediation planning and execution
Provide clear, actionable guidance to technical teams on meeting control requirements in scalable, practical ways
Review and validate control implementations and documentation produced by cross-functional contributors
Help standardize compliance patterns and best practices across cloud and hybrid environments
Communicate effectively with both technical and executive stakeholders, translating complex requirements into operational clarity
Maintain a strong bias toward execution, measurable progress, and defensible outcomes
Qualification
Required
8+ years of experience in security, compliance, or risk management within regulated or federal-aligned environments
Hands-on experience supporting FedRAMP and/or CMMC initiatives, including direct involvement in control mapping and implementation support
Demonstrated ability to translate compliance frameworks into operational technical controls
Experience working in cloud environments (AWS, Azure, or GCP), including security-relevant services such as IAM, logging, encryption, monitoring, vulnerability management, and configuration management
Proven ability to operate independently and lead compliance execution with minimal oversight
Experience supporting audits, assessments, or readiness reviews
Strong written and verbal communication skills, including experience drafting SSPs and technical narratives
U.S. Citizenship required
Preferred
Experience supporting federal, DoD, or defense-adjacent programs
Familiarity with AWS GovCloud and/or Azure Government environments
Experience in cloud-native or hybrid architectures under compliance scope
Prior involvement in systems pursuing or maintaining Authority to Operate (ATO)
Experience working directly with third-party assessors, auditors, or external partners
Background in environments where security and engineering teams collaborate closely on implementation
Company
MM International, LLC
MM International, LLC | Your Trusted Staffing Partner Across the USA! 🚀 Connecting top talent with unparalleled opportunities nationwide.
11-50 employees
Funding
Current Stage
Early StageCompany data provided by crunchbase