Cybersecurity Compliance Consultant (CCA) - REMOTE

BOOST delivers integrated back-office and technology solutions that empower government contractors to focus on their core mission and thrive in a competitive landscape. We bring deep expertise in cybersecurity, compliance, accounting, contracts, human resources, recruiting, and strategic advisory to solve the operational challenges faced by government contractors. We partner with our clients to navigate the complexities of government contracting, enabling them to scale with confidence. This role is full-time and fully remote, reflecting 's virtual company culture.Our technology practice is dedicated to fulfilling the cybersecurity, compliance, and IT requirements of government contractors. GovCon Enclave is a pioneering CMMC-compliant enclave solution designed to deliver a comprehensive, easily implemented, and fully managed cybersecurity compliance solution tailored for government contractors handling Controlled Unclassified Information (CUI).Role OverviewWe are seeking a Cybersecurity Compliance Consultant (CCA) to guide Department of Defense (DoD) contractors through the rigorous CMMC 2.0 and NIST 800-171certification process. This documentation-intensive, client-facing role requires the ability to bridge technical and compliance worlds, translating raw technical data into high-quality, defensible Policies, Standard Operating Procedures (SOPs), and System Security Plans (SSPs) that stand up to C3PAO audits.Key ResponsibilitiesPolicy Development and Authoring: Lead the development and localization of all 14 CMMC policy domains. Authoring deliverables such as Policies, Procedures, Plans, and ancillary documents.GRC Platform Management: Act as the primary administrator for our GRC tool (e.g., FutureFeed, Apptega, or Microsoft Purview). You will track maturity, map evidence to assessment objectives, and maintain client progress dashboards.Evidence Collection and Orchestration: Coordinate with client technical leads to identify, collect, and validate evidenceSSP & POA&M Ownership: Draft the System Security Plan (SSP)-and manage the Plan of Action and Milestones (POA&M) to ensure remediation gaps are closed.Client Advisory: Support team working with multiple clients, translating complex federal requirements into actionable task lists for their internal teams.QualificationsRequired:5+ years of Cybersecurity GRC, IT Audit, or Information AssuranceCertified CMMC Assessor (CCA)Security+ certificationExperience supporting C3PAO auditsDeep working knowledge of NIST 800-171 (110 controls) and the CMMC Assessment Guide (320 assessment objectives)Exceptional technical writing skills with demonstrable ability to produce clear, defensible compliance documentation.Ability to manage multiple client engagements simultaneously while maintaining quality and attention to detail.Excellent client communication skills with the ability to translate complex technical requirements into actionable guidance for non-technical stakeholders.Strongly Preferred:Hands-on experience with GRC platforms (specifically FutureFeed)Background working with small-to-midsize government contractorsExperience developing SSPs or POAMsWork Authorization RequirementsMust be a U.S. CitizenThis Role Requires:Self-direction and accountability in a fully remote environment-you manage multiple client relationships independently with minimal oversightExceptional technical writing skills with the ability to translate complex requirements into clear, actionable documentationMeticulous attention to detail and commitment to producing audit-ready deliverablesConsultative mindset that balances regulatory requirements with practical business constraintsStrong analytical and problem-solving capabilities when troubleshooting compliance gapsCollaborative approach when working with client technical leads and senior platform engineersAdaptability as compliance frameworks evolve and client needs changeWhat Success Looks LikeMeticulous attention to detail and commitment to documentation qualityConsultative mindset with a focus on client success and relationshipsAbility to balance technical precision with practical business constraintsSelf-direction and accountability in a fully remote environmentPhysical Requirements:Prolonged periods of sitting at a desk and working on a computer.Close vision required.Compensation and Benefits:Salary: $150K- $175K annually, commensurate with experienceComprehensive benefits packageRemote work environmentOpportunity to grow with a scaling companyBOOST LLC is proud to be an equal opportunity employer. We are committed to providing equal employment opportunities to persons without regard to race, creed, color, religion, national origin, sex, gender identity, marital status, citizenship status, age, veteran status or disability.