RemoteLeaf Logo
Log in Sign up

Cyber Security Specialist (CMMC Compliance)

4 hours, 36 minutes ago
United States
Full-time
Mid Level
Security Analyst
Cybersecurity
Active Directory Azure Cybersecurity Encryption Linux SIEM
Apply Now
Canopy Aerospace & Defense

Canopy Aerospace & Defense

Canopy Aerospace & Defense is an aerospace and defense / advanced materials manufacturing company that delivers specialized materials and components designed to help platforms perform faster, cooler, and quieter. Its capabilities include research and innovation, thermal protection systems, signal reduction, ceramic additive manufacturing, machining/laser cutting, composite bonding and finishing, reusable TPS, cut-and-sew TPS, and system integration and kitting.

Aerospace and defense
51-200
View All Jobs

Description

  • Lead implementation, assessment, and continuous improvement of security controls aligned with NIST SP 800-171 and CMMC 2.0.
  • Own and maintain the System Security Plan (SSP), Plans of Action and Milestones (POA&M), security policies, procedures, and compliance documentation.
  • Map and protect Controlled Unclassified Information (CUI) across engineering, procurement, quality, manufacturing, and supplier data flows.
  • Serve as the primary liaison for CMMC assessments, including coordination with C3PAOs, audit preparation, artifact management, and remediation tracking.
  • Implement and monitor security controls across IT and OT environments, including IAM, MFA, encryption, EDR, SIEM, firewalls, and network segmentation.
  • Conduct vulnerability scanning, risk assessments, and gap analyses against NIST SP 800-171 controls.
  • Lead cyber incident response activities, including documentation and reporting of incidents impacting CUI within DFARS timelines.
  • Partner with engineering, operations, quality, and leadership to integrate cybersecurity into product development and manufacturing processes.
  • Oversee relationships with managed service providers, cloud providers, and external security vendors.
  • Develop and deliver cybersecurity training for aerospace manufacturing personnel and establish compliance dashboards and executive reporting.

Requirements

  • Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field.
  • 3–5+ years of experience in IT or Cybersecurity with direct support for CMMC, NIST SP 800-171, or DFARS compliance in the Defense Industrial Base.
  • Hands-on experience implementing and assessing NIST SP 800-171 security controls.
  • Strong understanding of DFARS 252.204-7012 requirements and the CMMC 2.0 framework.
  • Experience with Windows and/or Linux systems, Active Directory, IAM, firewalls, VPNs, endpoint protection platforms, and vulnerability management tools.
  • Familiarity with hybrid IT/OT environments and protecting intellectual property within CAD/CAM or manufacturing systems.
  • Ability to translate regulatory requirements into scalable technical and operational solutions.
  • Strong documentation, communication, and cross-functional leadership skills.
  • Must be a U.S. Person (U.S. Citizen or Permanent Resident) due to ITAR/EAR regulations.
  • Experience with Microsoft GCC High or Azure Government is preferred.
  • Experience working with MSPs in a manufacturing environment is preferred.
  • Background in NIST 800-172 or APT protection is preferred.
  • CMMC CCP or CCA, CISSP, CISM, Security+, or equivalent certification is preferred.

Benefits

  • $130,000 - $150,000 annual salary.
  • Company-paid medical, dental, and vision insurance.
  • Retirement plan participation, subject to eligibility.
  • Paid sick leave, paid vacation, and paid holidays.
  • Discretionary bonuses.
  • Remote work location in California.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Recorded Future

Incident Response Analyst

Recorded Future 251-1K Professional Services

Recorded Future is hiring an Incident Response Analyst to support its Enterprise Security team with security operations, incident response, risk management, compliance, and training work across the company’s security function.

United Kingdom Junior Security Analyst
Bash Confluence JIRA Network Security Perl Python SIEM SOC Splunk
11 minutes ago
Abnormal AI

Security Analyst

Abnormal AI Internet Software & Services

Abnormal AI is hiring a detail-oriented operations team member to support cybersecurity investigations and queue-based work in a fast-paced virtual environment.

United States Full-time Entry Level Security Analyst
$34k-$490k
Cybersecurity Machine Learning
2 hours, 6 minutes ago
Signifyd

Risk Intelligence Analyst

Signifyd 251-1K IT Services

Signifyd is hiring a Risk Analyst to join its Risk Intelligence team, focusing on detecting fraud patterns, monitoring risk, and improving payment risk decisioning for e-commerce merchants worldwide.

Brazil Full-time Junior Data Analyst Security Analyst
Looker Machine Learning SQL
3 hours, 22 minutes ago
UpGuard

IT & Security Operations Analyst

UpGuard 51-250 Professional Services

UpGuard is hiring an IT & Security Operations Analyst to support and improve core IT, security, and cloud operations for a globally distributed team as the company scales its cyber risk platform.

Australia Full-time Mid Level Security Analyst
Bash CI/CD GCP macOS PowerShell Python SOC Terraform
4 hours, 36 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers