Full-Time - HYBRID | Clearfield, Utah
WE ARE A FEDERAL CONTRACTED DRUG-FREE WORKPLACE
About ISSE Services
ISSE Services is a cybersecurity and mission assurance company supporting defense, aerospace, and regulated industry customers. We specialize in Governance, Risk, and Compliance (GRC), cybersecurity engineering, managed security services, and CMMC readiness for organizations handling Controlled Unclassified Information (CUI).
Our mission is to help customers securely enable and accelerate their operations through practical compliance, technical expertise, and mission-focused security solutions.
Position Overview
ISSE Services is seeking a highly motivated CMMC Readiness Consultant / GRC Specialist to join our growing team full time. This role will support defense contractors and regulated organizations as they prepare for compliance with cybersecurity frameworks including:
-
CMMC Levels 1–3
-
NIST SP 800-171 / 172
-
RMF
-
FedRAMP
-
Secure Controls Framework (SCF)
The ideal candidate has hands-on experience implementing, documenting, and assessing security controls within enterprise environments. This position combines consulting, technical understanding, customer engagement, and compliance readiness activities to help organizations improve their cybersecurity posture and achieve assessment readiness.
This is a customer-facing role requiring strong communication skills, attention to detail, and the ability to translate complex compliance requirements into actionable guidance.
Key Responsibilities
CMMC & Compliance Readiness
-
Support organizations preparing for CMMC Level 1–3 compliance
-
Assist customers in identifying and protecting Controlled Unclassified Information (CUI)
-
Conduct gap assessments against NIST SP 800-171 and related frameworks
-
Perform mock assessments and readiness reviews
-
Assist with remediation planning and corrective action tracking
-
Support System Security Plan (SSP) and POA&M development
-
Draft and maintain compliance documentation, policies, and procedures
-
Help customers establish governance processes aligned with compliance objectives
Consulting & Advisory
-
Advise customers on security tools, technologies, and implementation strategies
-
Translate framework requirements into practical operational guidance
-
Collaborate with technical teams to validate control implementation
-
Participate in customer workshops, interviews, and discovery sessions
-
Provide recommendations to improve overall cybersecurity maturity
Continuous Improvement
-
Stay current on evolving CMMC guidance, NIST publications, and industry best practices
-
Support internal process development and service improvement initiatives
-
Contribute to the growth of ISSE Services’ mission assurance and compliance practice
Required Qualifications
-
Minimum 4 years of experience in a Governance, Risk, and Compliance (GRC) role
-
Experience working with one or more of the following frameworks:
-
CMMC
-
NIST SP 800-171
-
RMF
-
FedRAMP
-
SCF
- Hands-on technical experience in enterprise IT or cybersecurity environments
-
Strong documentation and technical writing skills
-
High attention to detail and organizational ability
-
Strong verbal and written communication skills
-
Ability to communicate clearly and professionally with clients and stakeholders
Preferred Qualifications
-
Experience supporting defense contractors or regulated environments
-
Familiarity with DIB cybersecurity requirements and DFARS clauses
-
Experience identifying and scoping CUI environments
-
Experience supporting audit readiness or formal assessments
-
Consulting or customer-facing experience preferred
-
BS/BA degree or an equivalent combination of education and experience (Preferred)
-
Secret Clearance (Preferred)
Preferred Certifications
One or more of the following certifications is preferred:
-
Certified CMMC Professional (CCP)
-
Certified CMMC Assessor (CCA)
-
Certified Information Systems Security Professional (CISSP)
-
Certified Information Systems Auditor (CISA)
-
Certified Information Security Manager (CISM)
-
CompTIA Security+
Excellent Benefits Package:
- Short-term and long-term disability
- Employee Assistance Program (EAP)