Address
Form of workSystems Planning and Analysis, Inc. (SPA) delivers high-impact, technical solutions to complex national security issues. With over 50 years of business expertise and consistent growth, we are known for continuous innovation for our government customers, in both the US and abroad. Our exceptionally talented team is highly collaborative in spirit and practice, producing Results that Matter. Come work with the best! We offer opportunity, unique challenges, and clear-sighted commitment to the mission. SPA: Objective. Responsive. Trusted.
The Cybersecurity Team, under SPA's Information Technology (IT) Department, establishes and maintains the security posture of both classified and unclassified technology infrastructure required by our analysts to deliver timely, objective, and cost-effective analysis.
SPA has an immediate need for a Cybersecurity Compliance Manager.
ResponsibilitiesSPA is seeking an experienced Cybersecurity Maturity Model Certification (CMMC) and National Institute of Standards and Technology (NIST) Special Publication (SP) 800-171 trained IT security and compliance professional to join our Cybersecurity team as a Cybersecurity Compliance Manager. This role requires awareness and prior experience with CMMC readiness and NIST SP 800-171 and includes technical system implementation, configuration, and compliance expertise.
In this role, you will report to the CISO while preparing and maintaining security documentation, evidence of compliance, performing audits/assessments, interfacing with client and/or Government personnel, participating in working groups, and maintaining a thorough understanding of CMMC and NIST SP 800-171 controls as they evolve with the Department of Defense (DoD).
As the Cybersecurity Compliance Manager, you will also be expected to collaborate with team members across multiple IT disciplines to implement secure processes, procedures, policies, architectures, and designs for IT systems across the SPA enterprise.
QualificationsRequired Qualifications:
- Bachelor's degree in an Information Technology/Engineering related field or equivalent work experience and certifications
- 7+ years of progressive Information/Cyber Security experience within federal contracting/DIB space or direct experience as an ISSM, ISSP, Security Control Assessor (SCA), or equivalent position
- Must be eligible for a DoD Secret clearance and meet Department of Defense 8140 certification requirements at IAM Level II. Acceptable certifications include CISSP, CISM, GSLC, and CAP
- Must possess knowledge and experience with handling of Federal Controlled Information (FCI) and Controlled Unclassified Information (CUI)
- Familiarity with the Cybersecurity Maturity Model Certification (CMMC) and a strong understanding of and experience with NIST 800-171 compliance
Desired Qualifications:
- Active Secret clearance
- Knowledge and experience working with a wide variety of security tools, platforms, and applications
- Cyber Accreditation Body (AB) CMMC Registered Provider or Assessor
- Excellent planning, organizing, budgeting, verbal, writing, executive presentation, and meeting management skills
