Do you have strong analytical and communication skills, like to work in a collaborative environment, and have a background in the US Department of Defense, US Military, or Aerospace & Defense industry? We may have the perfect opportunity for you! As a Cybersecurity Compliance Advisory Analyst I, you will be an integral part of our team, learning and supporting efforts to ensure our organization and its supply chain adhere to stringent cybersecurity standards and regulatory requirements. This Contracts and Supply Chain Compliance advisory role will assist in interpreting and applying compliance frameworks (specifically NIST SP 800-171, CMMC, and DFARS 252.204-7012) and contribute to the maintenance of our robust compliance posture. This is an excellent opportunity for an emerging professional to gain hands-on experience in cybersecurity contracts, supply chain risk management, and compliance advisory.
As SNCs corporate team, we provide the company and its business areas with strategic direction and business support spanning executive management, finance and accounting, operations, human resources, legal, IT, information security, facilities, spaneting, and communications.
Responsibilities:
Contract and Supply Chain Compliance Support:
- Assist in conducting cybersecurity due diligence by reviewing basic contracts to identify cybersecurity requirements for suppliers, subcontractors, and vendors.
- Monitor supplier and vendor cybersecurity performance to identify compliance with contractual obligations and regulatory standards.
- Support the documentation and tracking of supplier and vendor compliance issues, and assist in managing routine communication with suppliers and vendors regarding cybersecurity incidents.
- Help ensure procurement and subcontract processes align with cybersecurity regulations, including DFARS 252.204-7012, CMMC, organizational requirements, and industry best practices.
- Research and stay informed of evolving regulations, best practices, and standards affecting supplier and vendor compliance with DFARS and CMMC.
Cybersecurity Compliance Advisory Support:- Support the GRC team in developing and implementing a unified CMMC and DFARS compliance program.
- Assist in interpreting and translating cybersecurity regulations (NIST SP 800-171, CMMC, and DFARS 252.204-7012) into actionable guidance and contribute to process improvement.
- Support participation in gap analyses to help identify deficiencies and risks.
- Assist in collecting data for continuous monitoring programs and key performance indicators (KPIs) to track compliance and risks related to suppliers, subcontractors, and vendors handling CUI or FCI.
- Help system owners gather documentation to prepare for internal and external assessments (mock assessments, readiness reviews).
Qualifications You Must Have:
- Bachelors degree in a related discipline or 0 - 2 years of relevant experience
- A higher level degree may substitute for experience
- Related experience may be considered in lieu of required education
- Foundational understanding or strong desire to learn about NIST SP 800-171, DFARS 252.204-7012, and the Cybersecurity Maturity Model Certification (CMMC) 2.0.
- Strong analytical and organizational skills, with attention to detail.
- Good written and verbal communication skills.
- Ability to learn quickly and work effectively as part of a team.
Qualifications We Prefer:
- Proven track record of maintaining the confidentiality of high-sensitivity projects and data.
- Ability to perform critical-incident response.
- Ability to read and interpret security and technical documentation.
- Internship or project experience related to cybersecurity, IT audit, or compliance.
- Familiarity with contract language or supply chain concepts.
- Familiarity with ISO 9001 concepts.
- Relevant entry-level industry certifications (e.g., CompTIA A+, Network+, Security+) are a plus, but not required.
SNC offers a generous benefit package, including medical, dental, and vision plans, 401(k) with 150 match up to 6, life insurance, 3 weeks paid time off, tuition reimbursement, and more.
IMPORTANT NOTICE:
This position requires the ability to obtain and maintain a Secret U.S. Security Clearance. U.S. Citizenship status is required as this position needs an active U.S. Security Clearance for employment. Non-U.S. citizens may not be eligible to obtain a security clearance. The Department of Defense Consolidated Adjudications Facility (DoD CAF), a federal government agency, handles the adjudicative aspects of the security clearance eligibility process for industry applicants. Adjudicative factors which affect the outcome of the eligibility determination include, but are not limited to, allegiance to the U.S., foreign influence, foreign preference, criminal conduct, security violations and illegal drug use.Learn more about the background check process for Security Clearances.
SNC is a global leader in aerospace and national security committed to moving the American Dream forward. We’re known and respected for our mission and execution focus, agility, and disruptive and rapid innovation. We provide leading edge technologies and transformative solutions that support our nation’s most critical security needs. If you are mission-focused, thrive in collaborative environments, and want to make our country stronger with state-of-the-art technologies that safeguard freedom, join our team!
SNC is an Equal Opportunity Employer committed to an environment free of discrimination. Employment decisions are made based on merit without regard to race, color, age, religion, sex, national origin, disability, status as a protected veteran or other characteristics protected by law.
