Senior GRC Engineer – Government

🕒 May 6

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Workstreet

WebsiteLinkedInAll Job Openings

11 - 50 employees

Founded 2023

🔒 Cybersecurity

📋 Compliance

🤝 B2B

Cybersecurity • Compliance • B2B

Workstreet is a managed security and compliance services provider that helps businesses automate and modernize their security programs. With expertise in compliance frameworks including SOC 2, ISO 27001, HIPAA, and GDPR, Workstreet supports companies in achieving their security and compliance outcomes efficiently. Their services include acting as a virtual Chief Information Security Officer (vCISO), full-scale penetration testing, and vendor risk management, aiming to streamline security processes while allowing businesses to focus on growth.

📋 Description

• Analyze and interpret CMMC requirements and NIST SP 800-171 controls to ensure client compliance with Department of Defense cybersecurity standards. • Develop, implement, and maintain System Security Plans (SSPs), Plans of Action & Milestones (POA&Ms), and other CMMC-required documentation. • Conduct gap assessments and readiness reviews for organizations pursuing CMMC certification. • Collaborate with defense contractors to identify and remediate gaps in their cybersecurity programs to meet CMMC Level 1 and Level 2 requirements. • Guide clients through the CMMC assessment process and coordinate with Certified Third-Party Assessment Organizations (C3PAOs). • Manage and coordinate multiple CMMC compliance projects across various defense contractors, ensuring timely completion before contract deadlines. • Lead and mentor a small team of compliance professionals to effectively deliver on CMMC objectives. • Stay current with evolving CMMC requirements, CMMC 2.0 rulemaking, and DoD cybersecurity policies.

🎯 Requirements

• Must be a US citizen or permanent resident (due to potential access to CUI). • 5+ years of experience in defense contractor compliance, CMMC, NIST 800-171, NIST 800-53, or FedRAMP implementation. • 3+ years of leadership experience managing or guiding a small team. • Deep understanding of CUI handling requirements and DFARS clauses (252.204-7012, 252.204-7019, 252.204-7020, 252.204-7021). • Experience with NIST SP 800-171 control implementation and assessment. • Familiarity with DoD supply chain requirements and defense contractor workflows. • Experience working with small to mid-sized defense contractors. • Knowledge of common GCC High, Azure Government, or AWS GovCloud environments. • Ability to obtain U.S public trust security clearance. • Previous experience working directly with C3PAOs or as part of assessment teams.

🏖️ Benefits

• Reliable high-speed internet connection. • Quiet, professional home office setup.