ISO Compliance Consultant

Job Description: • Develop, update, and maintain all compliance documentation, including: System Security Plan (SSP), Plan of Actions & Milestones (POA&M), Policies and procedures. • Validate that implemented security controls meet NIST 800-171/CMMC requirements. • Provide expert guidance on compliance strategy, prioritization, and remediation. • Conduct internal risk assessments, gap assessments, and readiness checks. • Ensure continuous compliance and timely updates as regulations evolve. • Monitor firewall alerts, SIEM/log alerts, and system security events. • Review internal logs (server, endpoint, network) on a recurring basis. • Track newly released CVEs and advise on remediation or risk acceptance. • Provide high-level oversight of the organization's security posture. • Coordinate with the IT team regarding control implementation and evidence gathering. • Phase 1 (Build-out): Higher level of involvement establishing controls, documentation, and security architecture. • Phase 2 (Steady State): 5–10 hours/week of ongoing security monitoring, documentation updates, and compliance governance. Requirements: • Strong knowledge of NIST 800-171, CMMC, ISO 27001, or equivalent frameworks. • Experience preparing SSPs, POA&Ms, policies, and security governance documentation. • Understanding of IT environments (servers, cloud, networking, authentication). • Experience conducting audits, gap assessments, or compliance readiness reviews. • Ability to communicate clearly with both executives and technical staff. • Ability to prioritize tasks, work independently, and adapt to changing needs. • Ability to work with minimal direction or support and to learn quickly; strong analytical skills; creative and innovative thinking; detail-oriented; calm under pressure; commitment to follow-through; enthusiastic with a talent for motivating others; receptive to criticism and open to others' ideas; and effective in written communication. • To conform to U.S. Government export regulations, applicant must be a (i) U.S. citizen or national, (ii) U.S. lawful, permanent resident (aka green card holder). Benefits: • Equal Employment Opportunity. • ITAR Requirements. Apply tot his job