CMMC Compliance Specialist

We are seeking a detail-oriented CMMC Level 2 Compliance Specialist to lead and support our organization's efforts to achieve and maintain compliance with the Cybersecurity Maturity Model Certification (CMMC) Level 2 requirements. This role will work cross-functionally with IT, security, legal, compliance, and business stakeholders to assess current controls, identify gaps, implement remediation plans, and prepare for certification assessments.

Key ResponsibilitiesLead CMMC Level 2 compliance initiatives across the organization.

Assess and document the implementation of

NIST SP 800-171

security controls and related practices.

Perform gap assessments, readiness reviews, and internal audits to evaluate compliance posture.

Develop, maintain, and update required compliance documentation, including System Security Plans (SSPs), Plans of Action and Milestones (POA&Ms), policies, standards, and procedures.

Coordinate remediation efforts with internal teams to address control deficiencies and strengthen cybersecurity processes.

Support evidence collection and audit preparation for external assessors and certification activities.

Track compliance milestones, risks, and dependencies, and provide regular status reporting to leadership.

Partner with IT and security teams to validate technical, administrative, and operational controls.

Monitor regulatory updates and changes to CMMC, DFARS, FAR, and related federal cybersecurity requirements.

Help promote security awareness and compliance best practices throughout the organization.