SP6 · 4 hours ago
Security Compliance Consultant (NIST/CMMC)
Maximize your interview chances
Information Technology & Services
Insider Connection @SP6
Get 3x more responses when you reach out via email instead of LinkedIn.
Responsibilities
Leading cybersecurity readiness assessments including maturity assessments using the Cybersecurity Maturity Model Certification (CMMC) model.
Supporting the day-to-day activities of engagements for external clients, as a contributing member if SP6’s customer-facing Cyber Risk & Compliance practice. In this role, you will assist external customers in their FedRAMP, DFARS, CMMC, and NIST 800-171 compliance initiatives.
Understanding of control standards NIST 800-171, CMMC, and control testing strategies.
Applying cyber compliance / risk management knowledge, control principles and technical knowledge across cyber risk and compliance engagements.
Develop and deliver training to internal teams and customers.
Consulting with end clients to gather requirements and understand our clients' key business and security challenges. Working with team members to advise on practical and cost-effective solutions to help mitigate our clients’ cybersecurity risks and challenges.
In depth knowledge of relevant security regulatory compliance requirements and translating those into business processes and security controls to enhance and support client’s compliance and audit capabilities.
Articulating and defending IT controls testing approach and performing test of design and operating effectiveness.
Establishing and maintaining effective working relationships with colleagues, existing clients, and prospective client organizations.
Supporting the platform team and advising them on SP6’S CMMC software on what rules get built into the software.
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
3 years of experience testing and documenting IT security controls including experience managing and facilitating client control testing efforts
1 year of experience leading external and internal auditors, e.g., CMMC
2 years of experience creating technical documentation and compliance reports
1 year of experience building security programs in alignment with NIST, CSF, NIST 800-53 and/or NIST 800-171
1 year of experience with Cloud Security
CMMC Certified Assessor (CCA) or Certified Professional (CCP)
CISSP, CISM, CISA, CRISC or other related certification
Self-driven, with a strong desire to succeed
Ability to engage with customers/executives and foster positive relationships
Exceptional communicator and ability to relay complex technical concepts to non-technical audience
Benefits
100% employer-paid health insurance (Gold-rated plan)
401(k) with company match
30 days of annual paid time off (4 weeks Paid Time Off + Holidays)
Significant Training and Development and Certification attainment
Opportunity for long-term career advancement
Company
SP6
SP6 is an information technology & services technology firm specializing in cybersecurity and systems observability.
Funding
Current Stage
Growth StageRecent News
Business Journals
2024-04-19
2023-04-13
Company data provided by crunchbase