CMMC Implementation Specialist

Location: Hybrid – Vienna, Virginia
Job Type: Part-Time 
Department: IT / Security / Compliance
Reports To: President

Job Summary:

We are seeking a detail-oriented and knowledgeable CMMC Compliance Implementation Specialist to lead and support our organization’s efforts in achieving and maintaining compliance with the Cybersecurity Maturity Model Certification (CMMC) requirements. This individual will work closely with IT, security, operations, and executive leadership to ensure that all necessary cybersecurity practices and processes are implemented, documented, and ready for assessment.

Key Responsibilities:

• Conduct a gap analysis between our current cybersecurity posture and CMMC requirements.
• Develop and manage a CMMC implementation roadmap, including timelines, resource allocation, and milestones.
• Collaborate with internal stakeholders and external consultants/auditors to align cybersecurity practices with CMMC Level 2.
• Implement our System Security Plans (SSPs), Plans of Action & Milestones (POA&Ms), and other required documentation.
• Provide guidance on technical and procedural controls required by the NIST SP 800-171 framework (aligned with CMMC Level 2+).
• Lead or support training initiatives to promote cybersecurity awareness across the organization.
• Prepare the organization for third-party assessments and assist with any remediation efforts.
• Stay current on updates to the CMMC model, DoD requirements, and relevant cybersecurity regulations.

Qualifications:

• Bachelor's degree in Cybersecurity, Information Technology, or related field (or equivalent experience).
• Proven experience with CMMC, NIST SP 800-171, DFARS, or other compliance frameworks.
• Familiarity with IT security tools and techniques, including access control, logging, encryption, vulnerability management, etc.
• Strong documentation and project management skills.
• Experience working in or with DoD contractors or within a controlled unclassified information (CUI) environment is preferred.
• Industry certifications such as CISSP, CISA, CISM, Certified CMMC Professional (CCP), or similar are a plus.

Preferred Skills:

• Ability to translate complex compliance requirements into actionable plans.
• Comfortable leading cross-functional initiatives.
• Experience with audits and interfacing with third-party assessors.
• Knowledge of FedRAMP, ISO 27001, or other standards is a plus.

Salary Range: $35-$50/hour depending on experience