Cybersecurity Compliance Specialist

Overview

Onebrief makes military planning seamless and represents a shift in paradigm for future military decisions. It is an all-in-one tool that supports both the creative and process-oriented aspects of military planning. In Onebrief, planners use maps, boards, diagrams, timelines, slides and written products to create their plans—all while sharing a common database. Everything stays in sync, in real time. Our approach has been refined and validated through hundreds of user experiments.

Our product is currently in broad use at 8 of the largest military headquarters in the world. 3 of the 4 biggest operational plans in the US are currently built with Onebrief. Last year, we achieved 100% gross retention and 158% net retention—our revenue grew 4x and reached double-digit millions. We are backed by Y Combinator (S21) and top-tier VCs, including Caffeinated Capital (Affirm, Docker, Notion, and more) and Human Capital (Anduril, Brex, Snowflake, and more), and have raised a total of $53M in venture capital. Our elite team combines the best of tech and military talent, including education and experience at Google, Twitter, Adobe, MIT, Harvard, Special Operations, TOPGUN, and more.

What you will achieve

You will hit the ground running, applying your experience with Department of Defense ATOs to ensure that Onebrief compliance evidence is created, organized in our GRC platform, and regularly tested to ensure we can obtain and/or maintain our CTFs, ATOs, and FedRAMP High Authorization. You will work with our customers and provide documentation to DoD systems (i.e. eMASS) to support these efforts.

About You

This is an opportunity for candidates who are located in DC, Tampa, Hawaii, or San Diego, and have a TS clearance with SCI eligibility. You will primarily work remotely, but will, at times, be called upon to support our operations on-site.

The ideal candidate will have experience working in eMASS and commercial GRC platforms.

Qualifications

• 7+ years in Cybersecurity Compliance and related roles

• Certifications:

  • CISSP, CISM, CISSO, CPTE, CySA+, FITSP-A, GCSA, CISA, ISSEP, GSLC, or GSNA

• Comprehensive knowledge of NIST 800-53 and NIST 800-171 controls, including acceptable documentation standards.

• Familiarity with STIGs/SRGs and the OWASP Top 10.

• Exceptional writing, reporting, and organizational skills.

  Must-Have Skills and Qualifications:

  • Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or a related field

  • Hands-on expertise with NIST 800-53 Compliance

  • TS Clearance with SCI Eligibility

About Us

Onebrief makes military planning seamless and represents a shift in paradigm for future military decisions. It is an all-in-one tool that supports both the creative and process-oriented aspects of military planning. In Onebrief, planners use maps, boards, diagrams, timelines, slides and written products to create their plans—all while sharing a common database. Everything stays in sync, in real time. Our approach has been refined and validated through hundreds of user experiments.

Our product is currently in broad use at 8 of the largest military headquarters in the world. 3 of the 4 biggest operational plans in the US are currently built with Onebrief. Last year, we achieved 100% gross retention and 158% net retention—our revenue grew 4x and reached double-digit millions. We are backed by Y Combinator (S21) and top-tier VCs, including Caffeinated Capital (Affirm, Docker, Notion, and more) and Human Capital (Anduril, Brex, Snowflake, and more), and have raised a total of $53M in venture capital. Our elite team combines the best of tech and military talent, including education and experience at Google, Twitter, Adobe, MIT, Harvard, Special Operations, TOPGUN, and more.