CMMC Technical Analyst

Job Description

Job Description

Summary : The CMMC Technical Analyst is responsible for maintaining a high degree of support for management of CUI enforcing CMMC best practices aligned with processes.

Essential Job Duties :

• Technical Support Level 2 (in-depth diagnostics, deep problem-solving to find root causes, system and software configuration, network troubleshooting, and contributing to documentation and projects).
• Maintains proficiency and comprehensive knowledge and the ability to manage Controlled Unclassified Information (CUI) in compliance with applicable regulations
• Proficient / Expert with NIST standards
• Proficient / Expert with CMMC 2.0
• Competent knowledge of systems and cybersecurity
• Proficient / Expert with Government Cloud
• Proficient / Expert with automation and scripting
• Assists the Systems and Network Manager with cybersecurity projects and tasks
• Proficient / Expert with SIEM
• Implements and optimizes programs aligned with NIST SP 800‑171, CMMC, FedRAMP, and other applicable frameworks
• Develops and maintains System Security Plans (SSPs), Plan of Action & Milestones (POA&Ms), and other artifacts for audit readiness
• Performs enterprise-wide risk assessments, vulnerability analyses, threat modeling, and control testing
• Leads drafting, revision, and lifecycle management of IT policies, procedures and memos in alignment with NIST SP 800-171 and CMMC requirements
• Maintains compliance dashboards, evidence repositories, and control libraries
• Analyzes audit findings and continuous monitoring data to assess impact on CMMC maturity and enterprise cybersecurity effectiveness
• Collaborates with other business lines to ensure that new and existing systems, services, and vendor practices comply with information safeguarding requirements and other organizational requirements
• Ensures organizational policies reflect current regulatory and contractual obligations
• Translates complex technical and compliance information into actionable guidance for non‑technical stakeholders
• Monitors changes in federal cybersecurity laws, standards, and frameworks relevant to CUI protection
• Maintains hardware and software inventory
• Maintains help desk application to develop support activity database
• Develops strong understanding of company operations, requirements and objectives to ensure all IT operations support the corporate objectives
• Trains and assist IT support specialists with Cyber Security policies and compliance
• Adheres to internal IT Procedures and suggests improvements if needed
• Responsible for working according to the company’s safety and quality standards
• Maintains a safe and clean work area
• Performs other related duties as required and assigned

Qualifications :