GRC Engineer – CMMC, FedRAMP
Employment Information
Report this job
Job expired or something wrong with this job?
Job Description
GRC Engineer guiding clients through compliance frameworks like FedRAMP and CMMC, ensuring regulatory compliance and enhancing cybersecurity posture. Seeking a detail-oriented individual with strong client-facing skills.
Responsibilities:
- Interpret and Apply FedRAMP Requirements: Analyze and apply NIST SP 800-53 controls, FedRAMP baselines, and agency-specific requirements to ensure client compliance.
- Develop and Maintain FedRAMP Documentation: Develop and maintain System Security Plans (SSPs), control implementation narratives, POA&Ms, SAPs, SARs, and continuous monitoring artifacts.
- Conduct FedRAMP Readiness Assessments: Perform gap analyses and readiness reviews to prepare organizations for JAB or Agency ATO pathways.
- Support Authorization and Assessment Activities: Coordinate with Third-Party Assessment Organizations (3PAOs), cloud service providers, and government stakeholders throughout the FedRAMP lifecycle.
- Boundary Definition & Scoping: Perform CMMC/FedRAMP authorization boundary definition and system scoping activities.
- Support Continuous Monitoring Programs: Conduct monthly, quarterly, and annual FedRAMP continuous monitoring requirements.
- Support FedRAMP Engagements: Assist on multiple concurrent client projects.
- Support CMMC and NIST 800-171 Compliance Efforts: Assist defense contractors with interpreting CMMC 2.0 and NIST SP 800-171 controls and implementing compliant security programs.
- Develop CMMC Documentation: Contribute to SSPs, POA&Ms, and supporting artifacts required for CMMC Level 1 and Level 2 readiness.
Requirements:
- Strong organizational and project management skills with the ability to manage multiple engagements concurrently
- 2+ years of experience in GRC, with exposure to FedRAMP, NIST SP 800-53, and federal compliance programs
- Working knowledge of CMMC 2.0 and NIST SP 800-171 requirements
- Experience authoring and reviewing SSPs, POA&Ms, and assessment artifacts
- Familiarity with federal cloud environments (AWS GovCloud, Azure Government, GCC High)
- Experience working with SaaS providers, federal contractors, or regulated technology organizations
- Ability to thrive in a fast-paced, consulting, or startup environment.
Benefits:
- Reliable high-speed internet connection.
- Quiet, professional home office setup.
- Must be amenable to work US Eastern Time zone hours.
- Fluency in written and verbal English communication skills.
Similar Jobs
Global Regulatory Lead, PDx
Global Regulatory Lead overseeing pharmaceutical diagnostics from pre-clinical to registration in global markets. Leading regulatory strategy for new product introductions and compliance obligations.
Manager, Regulatory Compliance
Manager of Regulatory Compliance leading U.S. sportsbook trading operations at DraftKings. Ensuring compliance across jurisdictions and managing a team in a fast-paced environment.
Risk and Compliance Manager – Retail Broking
Risk and Compliance Manager supporting compliance obligations for retail broking businesses in the UK. Providing regulatory guidance while working closely with the Risk & Compliance team remotely.
Regulatory Lead – Mount Nansen Remediation
Regulatory Lead overseeing environmental assessments and permitting for Mount Nansen Remediation project. Leading collaboration between technical teams and regulatory bodies.
Regulatory Affairs Associate
Regulatory Affairs Associate for Parexel developing and publishing regulatory submissions to health authorities. Collaborating with stakeholders to ensure compliance and quality in documentation.
IT Compliance Specialist, SISP
IT Compliance Specialist advancing IT Compliance program at Sedgwick. Conducting risk assessments, collaborating with stakeholders, and ensuring regulatory compliance.
Associate Director – Global Compliance Platform
Associate Director overseeing Amgen's global compliance platform (C3) for healthcare compliance requirements. Leading strategy, governance, and operations to optimize compliance processes globally.
Trade Compliance Specialist
Trade Compliance Specialist reviewing and ensuring compliance of export orders and documentation for corporate clients. Collaborating with partners to maintain regulatory standards and documentation accuracy.
Medicare Compliance, Advertising Filing Specialist
Medicare Compliance & Advertising Filing Specialist managing all Medicare advertising submissions through HPMS. Ensuring compliance with CMS guidelines and managing material submissions across multiple carriers.
Senior Director – Contracts Compliance & Operations
Senior Director overseeing the contract compliance program and operational functions at Amentum. Lead initiatives to enhance efficiency and ensure adherence to government regulations.
Senior Director, Global Trade Compliance
Senior Director leading global trade compliance programs and teams at Beckman Coulter Diagnostics. Driving strategy and operational efficiency in a dynamic global business environment with compliance expertise.
Senior Compliance Officer
Senior Compliance Officer overseeing financial services compliance at Acorns. Leading regulatory strategies and ensuring adherence to regulations for a financial wellness platform.
Credentialing & Compliance Lead
Credentialing & Compliance Lead responsible for the Medicare DMEPOS credentialing lifecycle and compliance activities. Facilitating customer interactions and maintaining regulatory standards within a fast-growing startup.
BESS Product Compliance Engineer
Software Solutions Engineer focusing on deploying VaultOS Power Plant Controller in Australia. Collaborating with global teams to develop utility-scale energy storage systems.
Data Protection, Compliance & Transformation Specialist
Referent für Datenschutz, Compliance und Transformation bei Linimed Gruppe GmbH. Verantwortung für operative Umsetzung und Weiterentwicklung der Prozesse im digitalen Bereich.
Business License Compliance Manager
Business License Compliance Manager at Apex Companies ensuring compliance with business licensing across jurisdictions. Overseeing licensing processes, renewals, and regulatory requirements with internal stakeholders.
Manager, Insurance Compliance
Manager, Insurance Compliance responsible for insurance compliance with GSE and HUD lenders. Utilizing a compliance automation platform for efficient portfolio management and strategic client support.
Insurance Compliance Analyst
Analyst handling insurance compliance operations within technology-driven environment supporting GSE and HUD lender portfolios. Collaborating with senior team members for high-quality delivery and improvement.
Compliance Analyst, Research Compliance
Compliance Analyst coordinating export control compliance operations at City of Hope. Ensuring adherence to federal international compliance laws and regulations in the research sector.
Senior Compliance Analyst, Research Compliance
Senior Compliance Analyst at City of Hope ensuring compliance in research activities and regulatory standards. Conducting audits, documenting findings, and assisting in investigations of non-compliance issues.