$80K — $100K *
Grant Thornton (GT) is seeking a Cybersecurity Compliance Lead with deep NIST/CMMC expertise who can lead the firm’s NIST/CMMC compliance PMO. Grant Thornton is enhancing their security and privacy protections across both National and Public Sector enterprises. A Cybersecurity Compliance Lead is essential to identify and manage all cybersecurity and compliance activities, including key tasks needed to achieve compliance for the DFARS 171 and CMMC programs. This individual will work with executive stakeholders in our Enterprise Transformation, Public Sector and Compliance teams to ensure all teams are coordinated on this business-critical endeavor.
The Cybersecurity Compliance Lead is expected to work with the project manager and team to identify all required Work Breakdown Structure (WBS) task elements and oversee their execution through coordination with GT and contractor security and IT staff. Additionally, the CMMC/171 PMO Lead will be expected to ensure all cost, schedule, and performance metrics are tracked against a defined budget. The CMMC/171 PMO Lead will also work with the project manager on the completion and maintenance of a project plan to ensure all tasks, options, and decision points remain on schedule with minimal impact to GT operations.
Additionally, this role is required to work closely with IT and security staff to ensure technical implementations are accomplished in a manner that meets the security requirements objectives. Documentation will include policy and procedures material with project plan style content for security domains. Technical documentation includes content necessary to meet security requirements for implementation descriptions within System Security Plans, policy, NIST-based plans, procedures, and testing methodologies. The scope of work also includes horizontal coordination across technical teams and preparation of briefings to outline design options, cost benefit analysis, and impact to operational activities. The role includes technical research to identify the latest or most appropriate technology options that fit within GT operating objectives and enterprise architecture goals. Desired areas of experience include SecDevOps, NIST RMF, FISMA, FedRAMP, DFARS 171, DoD CMMC, HIPAA Security Rule, and ISO 27001/2.
Primary Job Responsibilities
Secondary Job Responsibilities
Technical Skills and Core Competencies Required
Preferred Certifications: CISSP, CISM, CRISC, CDPSE
Valid through: 5/31/2021
$200K — $250K
8 days ago