Job Description:
• Manage identity and access systems (Okta, Google Workspace).
• Support end users with workstation setup, software, connectivity, and troubleshooting.
• Maintain reliable network, VPN, and collaboration systems.
• Track assets, licenses, and SaaS configuration baselines.
• Establish and monitor backup, recovery, and endpoint protection standards.
• Automate repetitive tasks in a hyper-growth environment
• Architect compliance solutions that are sufficient and minimally disruptive to business operations.
• Implement and monitor security controls aligned with CMMC Level 2 and other applicable regimes.
• Maintain and update SSPs, POA&Ms, and related compliance documentation.
• Run vulnerability scans, remediation, and incident response.
• Coordinate third-party assessments, customer security reviews, and audit evidence.
• Assist engineering with STIG validation, RMF documentation, and ATO packages.
• Provide technical input on security boundary definitions and inherited control matrices.
• Write and maintain IT and security policies and procedures.
• Lead employee onboarding/off-boarding and security awareness training.
• Evaluate new IT and security tools for efficiency and risk reduction.
• Report compliance status and IT metrics to leadership.
Requirements:
• Bachelor’s degree in IT, Cybersecurity, or related field, or equivalent experience.
• Effective written communicator
• 4–7 years of combined IT administration and cybersecurity experience.
• Hands-on macOS, mobile and windows management experience.
• Practical knowledge of NIST 800-171, CMMC, ISO 27001, and basic RMF concepts.
• Familiarity with zero trust network principles, endpoint security, SIEM, and incident response workflows.
• Certifications such as Security+, CISSP, or CISM are preferred.
Benefits:
• Medical, Dental, Vision coverage
• HSA/FSA options
• Parental Leave
• 401(k): 100% match for the first 6% contributed
• Unlimited Paid Time Off
• Home Office Stipend