Compliance & Security Engineer

We are looking for a Compliance Security Engineer to join a growing team. You must have experience consulting multiple organizations and teams. Experience with government consulting is a major plus. You must be a US Citizen as you'll be working on some government contracts.

• Guide clients through achieving and maintaining compliance with frameworks such as CMMC and

NIST SP 800-171

• Conduct gap assessments and develop Plans of Action & Milestones (POA&M)
• Support audit readiness through evidence collection, documentation, and reporting
• Maintain accurate records within the organization's Governance, Risk, and Compliance (GRC) platform
• Perform vulnerability assessments, risk analyses, and security configuration reviews
• Configure and manage security tools such as EDR, SIEM, MFA, firewalls, and VPN solutions
• Develop and maintain secure configuration baselines and automation for scalable deployments
• Participate in incident response activities, including investigation, containment, and remediation
• Create and update incident response playbooks and procedures
• Contribute to continuous improvement of incident response capabilities
• Develop and maintain security policies, standards, and procedures aligned with compliance frameworks
• Create documentation tailored to individual environments and regulatory requirements
• Communicate effectively with both technical and non-technical stakeholders
• Lead or support stakeholder meetings related to compliance, risk, and incident response Qualifications
• Working knowledge of cybersecurity frameworks (CMMC and NIST preferred)
• Strong understanding of network infrastructure, systems, and security technologies
• Experience securing cloud environments (AWS, Azure / 365, or GCP)
• Proven troubleshooting and analytical skills in high-pressure environments
• Strong written and verbal communication skills
• Ability to manage multiple projects and priorities