CrawlJobs Logo

CMMC Consultant

United States, Torrance · Job Posted May 16, 2026
Apply Position
Job Link Share

Job Description

We are looking for an experienced CMMC Consultant to support compliance and audit preparation efforts for a Long-term Contract opportunity in Torrance, California. This role will guide the development of high-quality security documentation, help translate compliance expectations into practical controls, and partner with cross-functional teams to strengthen assessment readiness. The ideal candidate brings a strong background in cybersecurity governance, policy development, and security compliance within complex enterprise environments.

Job Responsibility

  • Develop, revise, and enhance security policies, standards, and procedures so they are thorough, consistent, and prepared for formal review
  • Create new compliance documentation where gaps exist and improve existing materials to align with CMMC expectations and audit standards
  • Partner with legal, people operations, and security stakeholders to confirm documentation accuracy, applicability, and organizational alignment
  • Collaborate with internal teams to define required controls, document measurable success criteria, and identify appropriate evidence for validation
  • Evaluate whether controls should be applied enterprise-wide or tailored to specific teams, while identifying technical and compensating measures when needed
  • Lead activities that strengthen readiness for a future C3PAO assessment, including organizing documentation and supporting pre-audit preparation
  • Help maintain appropriate separation of duties across compliance and assessment activities to support an objective audit posture
  • Coordinate with external assessors and internal stakeholders to keep readiness efforts on track and provide clear status reporting to leadership
  • Take ownership of audit readiness initiatives or support daily execution tasks that advance the organization's compliance goals

Requirements

  • 5+ years of experience in cybersecurity, information security, or compliance-focused roles
  • Demonstrated experience writing and improving cybersecurity policies, standards, and procedural documentation
  • Strong understanding of CMMC, security assessments, and audit readiness practices
  • Background in implementing or validating enterprise, network, application, or technical security controls
  • Experience working across legal, HR or people operations, security, and other business functions to drive compliance outcomes
  • Knowledge of cybersecurity compliance frameworks and the ability to identify compensating controls when standard approaches are not feasible
  • Strong analytical, organizational, and communication skills with the ability to manage documentation and reporting independently

What we offer

  • medical
  • vision
  • dental
  • life and disability insurance
  • 401(k) plan
  • free online training

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

CMMC Consultant

8 matching positions

Senior Consultant - CRM (Proactive Services) Unit 42

As a Senior Consultant in Unit 42 you will have the opportunity to work across a...
Location
Location
South Korea , Seoul
Salary
Salary:
Not provided
paloaltonetworks.com Logo
Palo Alto Networks
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years of consulting experience in SOC, security engineering, SIEM administration, and incident management and demonstrated success with serving large, multinational organisations in designing and implementing an organisation's security operations program, organisational structures, and capabilities
  • Possess a deep technical knowledge in Security Incident and Event Management (SIEM) platforms, Security Orchestration and Response (SOAR) technologies, Endpoint Protection and Response/Next Gen Protection and Response (EDR/XDR) tools, Next GenFirewalls, Threat Intelligence and Hunting platforms
  • Defensive Security Skills (desired)
  • Experience in security operations design, engineering and/or analysis and investigations, ideally in complex environments, with security event correlations across a variety of sources i.e. cloud, network, endpoint, logs
  • Ability to perform detailed assessments, identify areas for improvement and make recommendations to transform an organisation's cyber security operations and capabilities to better protect, detect and rapidly respond to modern threats
  • Demonstrated experience in improving an organisations security operations capabilities such as improvements in asset visibility, threat detection capabilities, automation techniques, case management, enablement of compliance and regulatory requirements
  • Experience in conducting threat hunting and/or compromise assessments to identify active or dormant indicators of compromise (IoCs) or evidence of unknown threats within an organisations digital environment
  • Relevant industry certifications including GIAC Defensible Security Architect (GDSA), GIAC Intrusion Analyst (GCIA), GIAC Continuous Monitoring (GMON), CISSP
  • Understanding of cyber risk frameworks or industry standards such as 800-53, ISO 27001/2, PCI, CIS 18, CMMC
  • 3+ years of experience performing cloud security advisement and risk assessments based upon industry-accepted standards
Job Responsibility
Job Responsibility
  • SOC Advisory
  • Principal Cloud Security
  • Principal Cyber Risk Management
Read More
Arrow Right

Security Network Engineer

Robert Half is the world’s first and largest specialized talent solutions firm t...
Location
Location
United States , Houston
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Security, or related field (or equivalent experience)
  • 5–7 years of experience in cybersecurity engineering, network security, or related technical roles
  • Strong understanding of TCP/IP, routing, switching, and network protocols
  • Proven experience with security tools such as SIEM (e.g., Splunk, Sentinel), firewalls (Fortinet, Cisco), and IDS/IPS solutions
  • Experience with cloud security (AWS and Azure)
  • Familiarity with incident response, threat hunting, and vulnerability management processes
  • Knowledge of common compliance and regulatory frameworks, e.g., NIST, PCI DSS)
  • Experience with cybersecurity governance
  • Strong communication skills and ability to work with both technical and non-technical stakeholders
  • Team player that can work with team members across departments, with consultants, and other 3rd party partners
Job Responsibility
Job Responsibility
  • Design, implement, and maintain security controls across networks, endpoints, and cloud environments
  • Coordinate with 3rd party partners to monitor, analyze, and respond to security incidents using SIEM tools and threat intelligence feeds
  • Coordinate vulnerability assessments and penetration testing with 3rd party partners
  • recommend and implement remediation actions
  • Manage firewalls, IDS/IPS systems, endpoint protection, and identity/access management solutions
  • Develop and maintain cybersecurity policies, procedures, and best practices
  • Develop, implement, and maintain a holistic cybersecurity program
  • Support compliance initiatives, e.g., NIST, ISO, CMMC, Ect
  • Proactively perform regular risk assessments and security audits to ensure continued resilience
  • Deploy, maintain, and troubleshoot corporate infrastructure systems including, but not limited to, Meraki, Fortinet, Juniper, VMware, and NAS/SAN
What we offer
What we offer
  • Medical
  • vision
  • dental
  • life and disability insurance
  • 401(k) plan
  • free online training
  • Fulltime
Read More
Arrow Right

Compliance Security Engineer

We are looking for a Compliance Security Engineer to join a growing team. You mu...
Location
Location
United States , East Hartford
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Working knowledge of cybersecurity frameworks (CMMC and NIST preferred)
  • Strong understanding of network infrastructure, systems, and security technologies
  • Experience securing cloud environments (AWS, Azure / 365, or GCP)
  • Proven troubleshooting and analytical skills in high-pressure environments
  • Strong written and verbal communication skills
  • Ability to manage multiple projects and priorities
  • 4+ years of experience in compliance, cybersecurity, or security engineering
  • Experience supporting CMMC and/or NIST 800-171 compliance frameworks
  • Bachelor’s degree in Cybersecurity or equivalent experience
  • Must be a US Citizen
Job Responsibility
Job Responsibility
  • Guide clients through achieving and maintaining compliance with frameworks such as CMMC and NIST SP 800-171
  • Conduct gap assessments and develop Plans of Action & Milestones (POA&M)
  • Support audit readiness through evidence collection, documentation, and reporting
  • Maintain accurate records within the organization’s Governance, Risk, and Compliance (GRC) platform
  • Perform vulnerability assessments, risk analyses, and security configuration reviews
  • Configure and manage security tools such as EDR, SIEM, MFA, firewalls, and VPN solutions
  • Develop and maintain secure configuration baselines and automation for scalable deployments
  • Participate in incident response activities, including investigation, containment, and remediation
  • Create and update incident response playbooks and procedures
  • Contribute to continuous improvement of incident response capabilities
What we offer
What we offer
  • medical, vision, dental, and life and disability insurance
  • eligible to enroll in our company 401(k) plan
  • free online training
Read More
Arrow Right

Senior Consultant - CRM

As a Senior Consultant in Unit 42 you will have the opportunity to work across a...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
paloaltonetworks.com Logo
Palo Alto Networks
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years of consulting experience in SOC, security engineering, SIEM administration, and incident management and demonstrated success with serving large, multinational organisations in designing and implementing an organisation’s security operations program, organisational structures, and capabilities
  • Possess a deep technical knowledge in Security Incident and Event Management (SIEM) platforms, Security Orchestration and Response (SOAR) technologies, Endpoint Protection and Response/Next Gen Protection and Response (EDR/XDR) tools, Next GenFirewalls, Threat Intelligence and Hunting platforms
  • Experience in security operations design, engineering and/or analysis and investigations, ideally in complex environments, with security event correlations across a variety of sources i.e. cloud, network, endpoint, logs
  • Ability to perform detailed assessments, identify areas for improvement and make recommendations to transform an organisation's cyber security operations and capabilities to better protect, detect and rapidly respond to modern threats
  • Demonstrated experience in improving an organisations security operations capabilities such as improvements in asset visibility, threat detection capabilities, automation techniques, case management, enablement of compliance and regulatory requirements
  • Experience in conducting threat hunting and/or compromise assessments to identify active or dormant indicators of compromise (IoCs) or evidence of unknown threats within an organisations digital environment
  • Relevant industry certifications including GIAC Defensible Security Architect (GDSA), GIAC Intrusion Analyst (GCIA), GIAC Continuous Monitoring (GMON), CISSP
  • Understanding of cyber risk frameworks or industry standards such as 800-53, ISO 27001/2, PCI, CIS 18, CMMC
  • 3+ years of experience performing cloud security advisement and risk assessments based upon industry-accepted standards
  • Hands-on experience with a cloud hosting provider (AWS, Azure, GCP, etc)
Job Responsibility
Job Responsibility
  • work across a number of proactive cyber security domains including Cloud Security, Security Operations, Cyber Risk Management and Artificial Intelligence in cyber security
  • deliver the best consulting outcomes for clients, as they work to address the challenges associated with today’s cyber threat landscape
  • Fulltime
Read More
Arrow Right

Copilot Cloud Solution Architect

Join Microsoft’s US Public Sector Industries DIB Team—where mission meets innova...
Location
Location
United States , Multiple Locations
Salary
Salary:
106400.00 - 203600.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's Degree in Computer Science, Information Technology, Engineering, Business, Liberal Arts, or related field AND 4+ years experience in cloud/infrastructure technologies, information technology (IT) consulting/support, systems administration, network operations, software development/support, technology solutions, practice development, architecture, and/or consulting OR equivalent experience
  • Citizenship & Citizenship Verification: This position requires verification of U.S. citizenship due to citizenship-based legal restrictions
  • This role will require access to information that is controlled for export under U.S. export control regulations
  • This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter
  • Technical expertise in Microsoft 365 workloads with emphasis on SharePoint on-prem, SharePoint Online, Copilot, and SharePoint Advanced Management (SAM)
  • Experience delivering collaboration and content governance solutions in regulated or classified environments, including GCC, GCCH, and sovereign clouds
  • Familiarity with MCEM, Unified Delivery, and Factory engagement models to drive scalable customer success
  • Proven ability to lead Copilot adoption, drive usage across SharePoint scenarios, and support renewals through measurable business impact
Job Responsibility
Job Responsibility
  • Lead the transformation of customer collaboration environments by deploying secure, scalable SharePoint Online architectures integrated with Microsoft Copilot and SharePoint Advanced Management (SAM)
  • Align SharePoint modernization strategies to mission outcomes, with a focus on AI-powered workflows, governance, and extensibility in regulated and classified environments
  • Support commercial defense contractors and federal agencies by embedding Zero Trust principles and compliance frameworks (e.g., ITAR, CMMC, FedRAMP) into SharePoint and Microsoft 365 deployments
  • Ensure secure access and content protection across GCC, GCCH, and sovereign cloud environments, partnering with security CSAs to deliver Information Protection, Insider Risk Management, and Purview capabilities
  • Demonstrate strong business acumen and opportunity identification, leading architecture whiteboarding sessions and live demos to showcase SharePoint Copilot scenarios and drive customer impact
  • Fulltime
Read More
Arrow Right

Sr Cloud Solution Architect - Cloud & AI Data

Join Microsoft’s US Public Sector Industries DIB Team—where mission meets innova...
Location
Location
United States , St. Louis
Salary
Salary:
106400.00 - 203600.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s Degree in Computer Science, Information Technology, Engineering, Business, Liberal Arts, or a related field AND 4+ years of experience in cloud/infrastructure technologies, IT consulting or support, systems administration, network operations, software development or support, technology solutions, architecture, or consulting OR equivalent experience
  • Active U.S. Government Top Secret Security Clearance
  • U.S. citizenship
  • Ability to pass Microsoft Cloud background check
  • Technical expertise in Azure Data Services, Synapse, Postgres, SQL, Databricks, Fabric, and Purview
  • Proficiency in Azure Kubernetes Service (AKS) and Azure API Management (APIM)
  • Exposure to DevSecOps principles and practices
  • Familiarity with DIB mission priorities, including compliance frameworks such as FedRAMP High, ITAR, and DFARS
  • Experience delivering data platform solutions in regulated or classified environments, including Azure Government, GCC High, and sovereign cloud deployments
  • Strong understanding of Zero Trust architecture, agentic DevOps, and secure-by-design principles for disconnected and mission-critical environments
Job Responsibility
Job Responsibility
  • Leading the modernization of customer data estates using Microsoft’s cloud-native services by designing and deploying secure, scalable architectures with Azure Data Services, Synapse, Fabric, and Purview
  • Aligning data platform strategies to mission outcomes, especially in regulated and classified environments
  • Supporting both commercial defense contractors and federal agencies through tailored data solutions, integrating Zero Trust principles, data governance, and compliance frameworks (e.g., ITAR, CMMC, FedRAMP)
  • Ensure data security across GCC, GCCH, and sovereign cloud environments and collaborate with security CSAs to deliver Purview, Information Protection, and Insider Risk Management capabilities
  • Proficient in usage of Azure Application services, including Azure AI Gateway, Azure AI Foundry, Azure Kubernetes Service (AKS), and GitHub Copilot
  • Support Azure Commercial, Government, Secret, and Top Secret and FedRAMP High environments with deep technical guidance on compliance, resiliency, and Zero Trust architectures
  • Fulltime
Read More
Arrow Right

Cybersecurity Solutions Architect

We are seeking a highly skilled Cybersecurity Solutions Architect to play a pivo...
Location
Location
United States , Ashburn
Salary
Salary:
Not provided
delviom.com Logo
Delviom
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong understanding of cybersecurity across multiple domains, including governance, cloud security, risk management, operations, vulnerability management, and compliance
  • Experience developing or supporting technical solutions in federal or commercial environments, including exposure to proposal and solution development processes
  • Solid understanding of service-based cybersecurity delivery models with a focus on scalability, resilience, and compliance
  • Ability to translate complex and ambiguous requirements into structured, clear, and persuasive technical solutions
  • Proven ability to collaborate across cross-functional teams in fast-paced environments
  • Excellent written and verbal communication skills, with the ability to present complex technical concepts to diverse audiences
  • Experience with federal cybersecurity frameworks such as NIST, RMF, FedRAMP, CMMC, and ISO 27001
  • Knowledge of Zero Trust principles and their application in federal and commercial environments
  • Familiarity with AI/ML applications in cybersecurity (e.g., SIEM analytics, behavioral detection, automation platforms)
  • Experience designing or implementing automation in SOC, compliance, or cloud security environments
Job Responsibility
Job Responsibility
  • Lead the development of cybersecurity technical solutions for RFP/RFQ/RFI responses, ensuring alignment with client requirements and organizational capabilities
  • Design and integrate AI/ML-driven capabilities into cybersecurity solutions, including threat detection, anomaly detection, and automated response
  • Create and maintain reusable solution accelerators, templates, and frameworks that improve proposal competitiveness and delivery efficiency
  • Develop automation-first approaches for SOC operations, RMF/ATO processes, compliance monitoring, and vulnerability management
  • Collaborate with Business Development, Capture Managers, Project Managers, and Subject Matter Experts (SMEs) to develop high-quality, competitive solutions
  • Identify, quantify, and articulate technical differentiators, including AI-driven capabilities, automation efficiencies, and reusable accelerators
  • Ensure solutions align with cybersecurity frameworks and standards such as NIST, RMF, Zero Trust, FedRAMP, and cloud security best practices
  • Drive continuous improvement by developing AI-enabled, automation-first cybersecurity service models that enhance efficiency, scalability, and mission impact
  • Contribute to strategic discussions around solution design, innovation, and service evolution to align with organizational goals
Read More
Arrow Right

Security Systems Engineer

The Security Systems Engineer (SSE) serves as the key resource for designing, im...
Location
Location
United States , Glastonbury
Salary
Salary:
Not provided
kelsercorp.com Logo
Kelser
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Previous experience in an MSP or consulting role preferred
  • Advanced in-depth, hands-on experience with: Security compliance experience (NIST, CMMC)
  • Network security best practices
  • Performing security risk assessments
  • Vulnerability Assessments and penetration tests
  • Implementing security controls for infrastructure and critical systems
  • Working knowledge of VLANs, VTP, and STP
  • Windows Server and Exchange Server support, implementation, administration, and migrations
  • AD administration and forest upgrades
  • Configuration and management of large and complex environments using Group Policy
Job Responsibility
Job Responsibility
  • Support Kelser customers with project delivery, server monitoring and administration and pre- sales engineering support
  • Service delivery via excellent communication and customer service
  • Network, Server and cloud infrastructure architecture and design
  • Attend and comprehend training
  • Ability to achieve higher level certifications
  • Stay current with emerging technologies and products
  • Availability for off-hours or on-call assignments
  • Other duties as determined by Kelser management.
What we offer
What we offer
  • Medical/Dental/Eye Care Insurance
  • Flexible Paid Time Off
  • Certification Support
  • Hybrid Schedule (3 days in office, 2 days remote)
  • 401(k)
  • Profit-Sharing
  • Short Term/Long Term Disability Insurance
  • Free Parking
  • Life Insurance
  • Paid Holidays
  • Fulltime
Read More
Arrow Right