Who we are:

CompassMSP is a rapidly expanding, award-winning technology solutions provider in the booming managed services space. Our vision is to be the North American leader in delivering and supporting technology solutions for small and mid-sized businesses. We are driven by our mission and core values to be a great place to work and a great company to work with.

Currently, our organization covers 5 regions with offices from Hartford to Chicago to Miami. We offer a broad portfolio of secure IT services including managed IT, cybersecurity, technical compliance (CMMC, NIST, HIPAA, etc.), cloud solutions, and professional services. We have garnered top industry recognition for our thought leadership, growth, and workplace culture.

What we are looking for:

Summary:

The CMMC Program Manager will work closely with clients, members of the C3PAO community, and internal/external stakeholders to advance the market recognition, capture new CMMC business, and own the overall delivery of CompassMSP CMMC services. The CMMC Program Manager will also serve as a subject matter expert to perform as a Lead Assessor on assessment and advisory services, ensure client satisfaction, mentor team resources, and may support the corporate interest in several other cybersecurity compliance and audit related work efforts. This position will report to the VP of Security.

Qualifications:

Certifications:

• Lead CCA (CIACO Certified CMMC Assessor)
• CISM or CISSO or CPTE or CySA or FITSP-A or GCSA or CISA or CISSP or CISSP-ISSEP or GSLC or GSNA
  
  
  

Experience:

• 5+ years of overall and management experience in a cybersecurity field
• 5+ years hands-on experience in a Cybersecurity Compliance Audit and Advisory services role
• 3+ years of experience performing assessments
• Effective program management, project management, and organization management skills to include follow-up, time management, project budget management and people management
• Strong background and understanding of NIST SP 800-171 and a broad range of knowledge in the fields of NIST Special Publications in the 800 series
• Deep knowledge of client engagement and practice management
• Experience with control assessments, coordination of audit activities, and leading multiple assessment engagement and train junior staff
• Familiarity with Information Security Principles, knowledge of IT Processes (e.g., Change Management, Incident Management, Risk Management, Network and System Administration, Monitoring)
• Strong technical, analytical, interpersonal, written and oral communication skills
• Strong writing ability for business, proposal, information delivery, status, technical and executive
• Ability to work independently, and collaboratively with a nationally distributed team
• Ability to develop and foster strong relationships in the industry, internally in the company, and with technology, business and government stakeholders
• Fluency in written and spoken English language
  
  
  

Who you are:

You are a positive, self-motivated person who has a passion for technology, teamwork and client success. You thrive in a dynamic, inclusive, high-energy, metrics driven environment, and you embrace coaching, mentorship and collaboration. You enjoy making work fun and rewarding for all!

Key Responsibilities:

Strategic Alignment

• Work closely with CompassMSP leadership team to align the cybersecurity assessment and advisory program delivery with the organization’s broader sales, services, quality and cybersecurity strategies
• Update the business regularly on service area performance, risks, opportunities, and needs providing data driven insights to inform decision making
• Participate in strategic planning sessions with the VP of Security to ensure that the cybersecurity assessment and advisory program supports corporate line of business goals
• Become a secondary point of contact and educator on CMMC, SSDF, and other Cybersecurity GRC for internal stakeholder
  
  
  

Compliance Engagement Leadership & Oversight

• Ensure all assessment activities comply with the security requirements for CMMC, or other compliance frameworks and relevant guidelines
• Oversee the evaluation and validation of security controls implemented by clients, ensuring that they meet the required standards
• Set tone and approach for assessment interviews and client engagement while conducting interview, examine, test and feedback
• Provide subject matter expertise for CMMC and NIST 800-Series compliance standards and regulations
• Conduct CMMC, and NIST 800-series gap assessments, compliance readiness, compliance monitoring, assessments, etc. activities
• Coordinate and leading delivery of audit milestones to ensure audit timelines stay on target by escalating and identifying roadblocks
• Conduct various IT Compliance controls validation and implementation activities
• Collaborate with technology and business stakeholders along with other Compliance team members to facilitate remediation and execution of corrective action plans
• Participate in continuous improvement initiatives
• Advise on continuous monitoring to maintain security acumen and compliance
• Prepare and present detailed risk reporting, summaries, assessment reports, procedure workbooks for actionable insight and contract compliance
  
  
  

Sales Support

• Participate and provide technical input during the proposal development process to secure new contracts and engagements.
• Develop and maintain relationships with potential and existing clients to understand their needs and tailor assessment services accordingly
• Participate in capture activities with Sales and supporting quote and proposal response toward capture
• Participate in industry conferences other marketing efforts to promote recognition for capability and competence
  
  
  

Team Management

• Oversee the allocation of resources across multiple engagements, balancing workloads, spend, earned value, profit while ensuring timely and quality delivery of services.
• Provide coaching and mentorship to more junior team members
• Assist in the development of templates and business improvement ideas for the delivery of Cybersecurity Governance Risk and Compliance services
  
  
  

What we offer:

• Competitive pay
• Quarterly Bonuses
• Progressive PTO
• Medical/Dental/Vision/Life/Disability available
• Tax deferred retirement plan with company match
• Career Development and Coaching
• Fun work environment!
  
  
  

Our Commitment to Inclusion:

Expand your horizons with us! CompassMSP is proud to be an Equal Opportunity Employer and we welcome everyone with the skills and drive to succeed.