CMMC Compliance Analyst

Job Summary

To support compliance initiatives, the remote CMMC Compliance Analyst will manage security integration phases, write standard operating procedures, and conduct training while ensuring adherence to DoD security requirements.

Key responsibilities

• Execute continuous monitoring activities across a CMMC L2 enclave to ensure compliance with NIST SP 800-171 controls
• Maintain audit-ready evidence repositories, including policies, procedures, and technical artifacts
• Prepare for and support C3PAO assessments, surveillance reviews, and re-certification activities

Required qualifications

• CMMC Registered Practitioner Advanced (RPA) certification
• CMMC Certified Professional (CCP) certification within the first six months
• Demonstrated experience supporting a successful CMMC Level 2 C3PAO assessment
• Strong working knowledge of NIST SP 800-171 controls and assessment objectives
• Experience with continuous monitoring, audit preparation, and compliance documentation