CMMC Compliance / Facility Security Officer

SUMMARY

The CMMC Compliance / Facility Security Officer (FSO) will provide onsite support for all security actions in accordance with Federal government security regulations. The incumbent will serve as the liaison with US government counterparts, conduct security briefings and debriefings, monitor classified controlled areas, and perform periodic self-inspections and ensure compliance with CMMC policies.

DUTIES AND RESPONSIBILITIES

• FSO Duties and Responsibilities
  • Perform all security operations including personnel clearance processing, tracking, education, reporting, debriefs and any other duties administratively.
  • Process necessary badges, visit requests and certifications for government facilities.
  • Daily use of personnel clearance data systems - DISS/NBIS and other security software in the performance of assigned duties.
  • Prepare, issue and maintain DD254s.
  • Maintain classified materials receipt, logging, control, and dissemination.
  • Maintain accountability of classified government-furnished information and equipment.
  • Maintain certification and accreditation of the facilities eligibility as well as personnel.
  • Maintain and coordinate excellent working relationships with government agencies.
• CMMC Compliance Duties and Responsibilities
  • Manage risk and vulnerability assessments, validation testing, compliance reviews, and audits in accordance with NIST standards.
  • Participate in and perform inspections and audits.
  • Create and update security plans, procedures, and instructions.
  • Develop and administer a comprehensive security education training program.
  • Assure compliance with all government and company security regulations.
  • Create and administer policies regarding companywide handling and transmission of CUI, PII, ITAR etc.

QUALIFICATIONS

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required.

• Experience implementing NISPOM requirements helpful
• Experience in the U.S. Government, Intelligence, or contractor community in security management.
• Experience in Industrial Security with associated training and credentials.
• Experience with DCSA Defense Information Security System (DISS) helpful
• Experience as a Facility Security Officer (FSO) preferred.
• Familiarity with the requirements of DFARS 252.204-7012, DFARS 252.204-7019, DFARS 252.204-7020, DFARS 252.204-7021, and FAR 52.204-21.
• Thorough understanding of market structures, including relevant regulatory compliance requirements (ISO27001, SOC 2, NIST, FedRamp, CMMC, PCI, GDPR, etc.)
• Proficient with Microsoft applications.
• Excellent interpersonal, written and verbal communication skills.

EDUCATION AND/OR EXPERIENCE

• This position requires a BA or BS degree in cybersecurity, risk management, governance, or a related field and experience with industrial security, NISPOM, COMSEC programs, clearance processing, document control, and physical security; or equivalent combination of education and experience.

Mainstream Engineering Corporation is an equal opportunity employer. Qualified candidates will be considered without regard to legally protected characteristics.