CMMC Program Analyst - HealthCare Resolution Services

SUMMARY:

HCRS is seeking a Cybersecurity Maturity Model Certification (CMMC) Program Analyst to perform cybersecurity consulting and assessments for its clientele. The Program Analyst will assist organizations with the review and update of existing security policies and procedures to align with evolving CMMC requirements and best practices in cybersecurity. The Program Analyst will play a key role in driving strategy, planning, implementation, and ongoing compliance with DFARS 252.204-7012, NIST SP 800-171, and CMMC compliance.

RESPONSIBILITIES:

• As an advisor, you will work with organizations preparing for CMMC by helping them determine their in-scope boundary and perform Gap Analyses to assess the current state against CMMC requirements.

• Advisors may also be required to provide compliance remediation services to research and develop technical solutions to compliance-related problems, and other services including road mapping, System Security Plan (SSP) development, and Policy and Procedure support.

• Provide guidance on the administration and maintenance of security systems infrastructure, applications, devices, tools, and software services.

• Effectively communicate advice on scoping and control development/management.

• Review and analyze artifacts related to CMMC requirements.

• Prepare and conduct interviews related to potential gaps in preparedness.

• Confidently examine and test requirement preparedness.

• Write up and present to client priorities and remediation strategies against CMMC requirements.

• Ability to track detailed tasks and ensure timely delivery of project deliverables.

• Excellent communication, organizational, and problem-solving skills.

• Ability to work independently and as part of a team with a professional attitude and demeanor.

QUALIFICATIONS:

• Bachelor's degree in computer science or related field preferred

• Certifications such as Certified Registered Practitioner (RP), Certified CMMC Professional (CCP), or Certified CMMC Assessor (CCA) are required.

• Expert knowledge of other compliance frameworks such as FedRAMP, FISMA, SOC, ISO, HIPAA, HITRUST, NIST 800-171, etc.

• Previous experience working for a CMMC RPO or C3PAO

OTHER REQUIREMENT:

• US Citizenship Required.

• Have or the ability to obtain a favorable DoD Suitability Determination, or Possess a NAC (National Agency Check) or other DoD accepted clearance