Job Description
Job Overview
Senior cybersecurity and compliance professional responsible for protecting sensitive systems and data while leading compliance efforts related to NIST SP 800-171, CMMC Level 2, DFARS, and ITAR. Partner with technical and business teams to strengthen security posture, manage risk, and support audits and certifications.
Key Responsibilities
• Lead and support cybersecurity compliance and CMMC readiness efforts.
• Develop and maintain security policies, procedures, SSPs, POA&Ms, and compliance documentation.
• Support audits, assessments, evidence collection, and remediation activities.
• Manage security operations, including vulnerability management, monitoring, incident response, and security tools.
• Coordinate risk assessments, penetration testing, and corrective actions.
• Promote secure handling of sensitive information and provide security awareness training.
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.
Required Skills & Experience
• Bachelor’s degree in a related field or equivalent experience.
• 5+ years of cybersecurity, security operations, or compliance experience.
• Strong knowledge of NIST SP 800-171, CMMC Level 2, DFARS, and regulated/government-contracted environments.
• Experience with compliance documentation, audits, risk assessments, and remediation activities.
• Hands-on experience with security technologies such as SIEM, vulnerability scanners, endpoint protection, IDS/IPS, firewalls, and network monitoring.
• Knowledge of Windows, Microsoft 365 security, IAM, endpoint security, and network security.
Strong communication, documentation, and problem-solving skills.
Nice to Have Skills & Experience
• Experience with CMMC Level 2 certification/readiness, SPRS, CUI scoping, and evidence management.
• Certifications such as Security+, CISSP, CISM, CEH, GIAC, SSCP, or CISA.
• Active security clearance or eligibility to obtain one.
• Experience with RMF, STIGs, FedRAMP, FISMA, DevSecOps, or secure software development.
• Experience with cloud security, including Microsoft 365, Azure, AWS, or similar platforms.
Familiarity with ERP systems and working with external auditors or assessment organizations.
Benefit packages for this role will start on the 1st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.