Get new jobs for this search by email

Cyber Maturity Model Certification (CMMC) Specialist Job Summary: Talent Software Services is in search of a Cyber Maturity Model Certification (CMMC) Specialist for a contract position that can be worked 100% remotely (considering candidates based in CST, MST, and PST except CA). The opportunity will be one year with a strong chance for a long-term extension. Position Summary: The role of the Cyber Maturity Model Certification (CMMC) Specialist is to lead in the planning, implementing, and maintaining of the CMMC program and managing IT/System/Process Owners evidence deliverables and remediation activities. Primary Responsibilities/Accountabilities: Implement and manage a CMMC continuous monitoring program to ensure compliance with CMMC rules and requirements for the organization. Coordinate, develop, implement, and manage projects, assessments, and work with control owners to remedy the effectiveness of IT controls over CMMC requirements across the enterprise. Work closely with stakeholders, including customers, process owners from business functions, IT teams, and application owners. Drive and develop capabilities and processes to ensure strict compliance with IT and Cybersecurity relevant controls for CMMC compliance. Support continuous monitoring efforts for government-managed systems and oversee annual assessments. Develop and maintain a continuous monitoring program and corresponding processes to support compliance requirements. Support and manage detailed testing of controls to ensure risks are appropriately identified and mitigated. Assist the Governance, Risk, and Compliance Team in documenting and reporting control deficiencies. Establish tracking capabilities and provide updates on CMMC compliance-related initiatives to management. Collaborate with control owners to ensure timely completion of periodic controls and compliance activities. Assist with integrating new acquisitions into the standard framework, including controls over all end-to-end processes. Conduct ongoing reviews to ensure management can rely on in-scope NIST and complementary security framework controls. Identify and assess the impact of emerging IT risks and engage appropriate business and technical resources when needed. Lead walkthroughs between process owners and auditors. Qualifications: Bachelor's degree in Computer Science or a related field, or an equivalent combination of training and experience. 5 years of experience in corporate functions involving IT and cybersecurity controls or similar experience involving risk assessments and developing mitigation plans. Minimum 3 years of direct work experience in IT controls related activities. Experience within an Internal Control, Internal Audit function, or Big Four is preferred but not required. Knowledge of CMMC, cybersecurity, and government cloud networking is preferred. Bonus Points for GSEC, CISA, CISM, CASP, or Security Certifications. Preferred: Thorough understanding of rules and regulations around CMMC requirements and similar federal regulations. Experience in performing or reviewing NIST 800-53, 800-171 (or equivalent) operational compliance activities. Solid understanding of assessing and designing internal controls in an enterprise-level environment. Knowledgeable with Enterprise Resource Planning (ERP) Systems, specifically SAP, and key operating systems such as Windows, UNIX/Linux, AWS Government Cloud. Ability to exercise independent judgment and creative problem-solving techniques in a highly complex, fast-paced environment. Strong interpersonal skills, including the ability to respond appropriately in pressure situations with a calm and steady demeanor. Strong organization, time-management, communication, and analytical skills. Experience presenting complex technical information to decision-makers and leading them through the decision-making process. Ability to gather data, compile information, and prepare reports. Excellent oral, written, and communication skills. Ability to collaborate and work with business and technology teams. If this job is a match for your background, we would be honored to receive your application! Providing consulting opportunities to TALENTed people since 1987, we offer a host of opportunities including contract, contract to hire and permanent placement. Let's talk!