CMMC Compliance Analyst

CMMC Compliance Analyst Springfield, OH Job Details 4 hours ago Qualifications CMMC Computer science Computer Science Regulatory compliance Compliance audits & assessments Gap analysis Mid-level Information security Information security compliance Analysis skills Policy & process development Information Security Bachelor's degree NIST standards Risk management Organizational skills Cybersecurity Cross-functional collaboration Bachelor's degree in computer science Communication skills Full Job Description ProStratus, a Certified Level 2 Managed Security Service Provider (MSSP), is seeking a skilled CMMC Compliance Analyst to join our team. In this role, you will play a critical part in supporting our clients' efforts to achieve and maintain Cybersecurity Maturity Model Certification (CMMC) and other compliance requirements. You will assist clients through the full lifecycle of compliance, ensuring their systems, policies, and procedures align with evolving cybersecurity standards. Within ProStratus, the CMMC Compliance Analyst operates our Governance, Risk, and Compliance (GRC) platform—managing, generating, and auditing policies, procedures, and supporting evidence required for certification. The ideal candidate will bring strong expertise in compliance and cybersecurity, and be adept at translating regulatory frameworks into actionable client solutions. Key Responsibilities Guide clients in preparing, achieving, and maintaining CMMC and related cybersecurity certifications. Conduct assessments and gap analyses to determine compliance with CMMC standards. Operate and maintain the GRC platform, ensuring all documentation is current and comprehensive. Draft, review, and audit security policies, procedures, and supporting evidence for clients and internal use. Collaborate with internal and client teams to develop and execute remediation plans for identified deficiencies. Monitor and track compliance efforts, providing ongoing support and consultation. Stay up-to-date on CMMC requirements, regulatory changes, and industry best practices. Qualifications Bachelor's degree in Information Security, Computer Science, or a related field preferred. Experience in compliance, cybersecurity, or risk management. Familiarity with NIST frameworks and federal cybersecurity regulations. Experience operating a GRC or similar compliance platform. Demonstrated ability to draft and audit policies, procedures, and compliance documentation. CCP or CCA certification highly preferred, or the ability to obtain certification within 6 months of hire. Excellent communication, analytical, and organizational skills. Additional Requirements Ability to work independently and collaboratively within a team environment. Attention to detail and strong problem-solving skills. Commitment to ongoing professional development and keeping current with cybersecurity compliance trends.