CMMC Compliance Implementation Specialist
Location: Hybrid – Vienna, Virginia
Job Type: Part-Time
Department: IT / Security / Compliance
Reports To: President
Job Summary:
We are seeking a detail-oriented and knowledgeable CMMC Compliance Implementation Specialist to lead and support our organization’s efforts in achieving and maintaining compliance with the Cybersecurity Maturity Model Certification (CMMC) requirements. This individual will work closely with IT, security, operations, and executive leadership to ensure that all necessary cybersecurity practices and processes are implemented, documented, and ready for assessment.
Key Responsibilities:
- Conduct a gap analysis between our current cybersecurity posture and CMMC requirements.
- Develop and manage a CMMC implementation roadmap, including timelines, resource allocation, and milestones.
- Collaborate with internal stakeholders and external consultants/auditors to align cybersecurity practices with CMMC Level 2.
- Implement our System Security Plans (SSPs), Plans of Action & Milestones (POA&Ms), and other required documentation.
- Provide guidance on technical and procedural controls required by the NIST SP 800-171 framework (aligned with CMMC Level 2+).
- Lead or support training initiatives to promote cybersecurity awareness across the organization.
- Prepare the organization for third-party assessments and assist with any remediation efforts.
- Stay current on updates to the CMMC model, DoD requirements, and relevant cybersecurity regulations.
Qualifications:
- Bachelor's degree in Cybersecurity, Information Technology, or related field (or equivalent experience).
- Proven experience with CMMC, NIST SP 800-171, DFARS, or other compliance frameworks.
- Familiarity with IT security tools and techniques, including access control, logging, encryption, vulnerability management, etc.
- Strong documentation and project management skills.
- Experience working in or with DoD contractors or within a controlled unclassified information (CUI) environment is preferred.
- Industry certifications such as CISSP, CISA, CISM, Certified CMMC Professional (CCP), or similar are a plus.
Preferred Skills:
- Ability to translate complex compliance requirements into actionable plans.
- Comfortable leading cross-functional initiatives.
- Experience with audits and interfacing with third-party assessors.
- Knowledge of FedRAMP, ISO 27001, or other standards is a plus.
Salary Range: $35-$50/hour depending on experience
Top Skills
What We Do
Horizon Industries is an IT services corporation serving Clients across the U.S. and internationally. Headquartered in Tysons Corner, Virginia, with offices in London, UK, Timisoara, Romania, and New Delhi, India, Horizon has over two decades of experience providing IT and Management consulting services to the U.S. Government and commercial clients around the globe. We focus on emerging capabilities in Cyber, Low Code, RPA, AI and Network Technologies. To meet the business objectives and needs of our clients, our teams deliver full life-cycle of support from business strategy analysis, business system development and deployment, and operations support.
Our Mission:
We place our customers’ missions first, and believe our own success will follow. Horizon builds excellent multidisciplinary teams that work together, contributing unique perspectives which maximize client results. Horizon’s culture ensures that each employee is constantly learning and acquiring new skills to continually improve the client experience.
