Sr. Manager Cyber Security (CMMC Compliance) in Laurel, Maryland at Antenna Research Associates Inc
Explore Related Opportunities
Job Description
Company Overview
ARA is a leading C5ISR company that designs, manufactures, tests and installs innovative technologies that provide the national security community with unparalleled situational awareness, threat detection, and communications capabilities.
Our disruptive, integrated solutions, assemblies and subsystems rise to the challenging demands of discerning, mission-critical customers.
We leverage our capabilities to meet and exceed the requirements of our customers and empower them to remain ahead of evolving threats and complexities in a dynamic security landscape.
Job Summary
The Senior Manager, Cybersecurity (CMMC Compliance) to lead cybersecurity governance, regulatory compliance, and information security initiatives across the enterprise. This role will be responsible for maintaining and advancing the organization's CMMC compliance program while ensuring adherence to NIST 800-171, DFARS requirements, CUI protection standards, and other applicable cybersecurity regulations.
Essential Functions
Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions.
- Lead and maintain the organization's CMMC Level 2 compliance program, including audit readiness, evidence management, and continuous monitoring activities.
- Oversee compliance with NIST SP 800-171, DFARS cybersecurity requirements, CUI handling standards, and ITAR regulations.
- Develop, maintain, and manage System Security Plans (SSPs), POA&Ms, risk assessments, policies, and security documentation.
- Coordinate internal assessments, customer audits, and C3PAO evaluations while driving remediation efforts.
- Partner with IT, engineering, contracts, and operations teams to implement and sustain cybersecurity controls.
- Monitor cybersecurity risks, vulnerabilities, and compliance gaps, recommending corrective actions and continuous improvements.
- Support incident response, security investigations, and regulatory reporting requirements.
- Manage cybersecurity vendors, tools, and third-party security service providers.
Position Qualifications
In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification form upon hire.
Competency Statements
- Adaptability - Adapts to change, open to new ideas and responsibilities
- Communication - Ability to communicate thoughts clearly, both oral and written in an honest, open and timely manner
- Job Knowledge - Understands facets of job, aware of duties and responsibilities, keeps job knowledge current
- Technical Skill - Possesses the knowledge and skills needed to perform a job or role effectively
- Dependability - Meets deadlines, works independently or in a team environment, is accountable, maintains focus, good attendance record
- Quality - Strives to eliminate errors, accurate work is a priority, seeks opportunities to improve products
- Ethics - Honest, accountable, maintains confidentiality
- Initiative / Take Ownership - Takes action, seeks new opportunities, strives to see projects to completion, meaning own your job and see it through
- Decision Making - Problem solve and critical thinking skills, be able to reach a decision, take thoughtful approach when considering options, seeks input from others, makes difficult decisions
- Customer Focus - Understands and can meet the needs in a customer-centric (Internal and External) environment and build strong relationships. Promotes a positive image of the company and strives to solve issues raised by customers
Experience and Skills
- 8+ years of cybersecurity, information assurance, or compliance experience, preferably within a defense or regulated environment.
- Hands-on experience supporting or leading CMMC Level 2 implementation, assessment, and sustainment activities.
- Strong knowledge of NIST SP 800-171, DFARS requirements, CUI protection, and ITAR-controlled environments.
- Experience developing SSPs, managing POA&Ms, conducting risk assessments, and supporting cybersecurity audits.
- Relevant certifications such as CISSP, CISM, CISA, Security+, or similar credentials preferred.
Education
- Bachelor's degree in Computer Science, Information Systems, Business Technology, or related field required; advanced degree preferred.
Antenna Research Associates, Inc. is an equal opportunity employer committed to a policy of non-discrimination and affirmative action. We do not discriminate based on race, color, religion, sex, national origin, disability, protected veteran status, or any other legally protected status