Responsibilities

• Lead cybersecurity compliance activities across regulatory, contractual, and client‑driven requirements.
• Interpret and operationalize frameworks such as CSF, CMMC, and CPCSC, translating requirements into clear, actionable controls.
• Own policy, standard, and procedure development, ensuring alignment with technical reality and business operations.
• Partner with IT, cybersecurity, legal, and business teams to implement and sustain compliance controls.
• Manage audit and assessment activities, including evidence collection, responses, and remediation tracking.
• Use Microsoft compliance tooling, including Microsoft Purview, to support data governance, risk management, and reporting.
• Communicate compliance posture, risks, and gaps clearly to technical and non‑technical stakeholders.

Qualifications

• 6+ years of cybersecurity compliance, governance, or risk experience; cer...