Conduct gap assessments against CMMC/NIST SP 800-171 requirements
Assist with the development and updates to the System Security Plan (SSP) and POA&M
Broadway Ventures transforms challenges into opportunities with expert program management, cutting-edge technology, and innovative consulting solutions. As an 8(a), HUBZone, and Service-Disabled Veteran-Owned Small Business (SDVOSB), they empower government and private sector clients by delivering tailored solutions that drive operational success, sustainability, and growth.
IFS is a billion-dollar revenue company with 7000+ employees on all continents. Their leading AI technology is the backbone of their award-winning enterprise software solutions, enabling customers to be their best when it really matters–at the Moment of Service™.
Lead the technical design, implementation, and ongoing security operations of a Microsoft 365 GCC High environment supporting Controlled Unclassified Information (CUI).
Implement and evidence compliance with CMMC Level 2, DFARS 7012, and NIST 800-171 controls.
Act as the technical owner of the GCC High enclave, partnering with Security, Legal, and IT to ensure audit readiness and successful certification by May 2026.
ServiceNow, founded in 2004, is a global market leader providing AI-enhanced technology to over 8,100 customers, including 85% of the Fortune 500. They offer an intelligent cloud-based platform that connects people, systems, and processes to empower organizations to find smarter, faster, and better ways to work.
Manage and develop staff members under Product Compliance.
Oversee and contribute to the vulnerability management lifecycle.
Assess and serve as a subject matter expert for regulatory and compliance requirements.
ExtraHop is a company that focuses on network detection and response (NDR) to help organizations stay ahead of emerging threats. They integrate network threat detection, network performance management, intrusion detection, and packet forensics into a single console.
Support SSA efforts to comply with NSM-8 and EO 14028 requirements for National Security Systems.
Design, develop, and support software, infrastructure, databases, tools, and systems supporting NSS modernization efforts.
Provide technical writing support for project documentation, system designs, and implementation artifacts.
Kentro solves challenges to maximize impact by providing innovative technology solutions. They foster a close community with teamwork, dedication, and excellence. They hold three ISO certifications (27001:2013, 20000-1:2011, 9001:2015), two CMMI ML 3 ratings (DEV and SVC) and CMMC Level 2 Certification.
Support RMF lifecycle activities in accordance with DoDI 8510.01.
Develop and maintain RMF artifacts including system security plan, plan of action & milestones, security control traceability matrix, security CONOPS and incident response plan.
Maintain the system Body of Evidence within eMASS.
SIXGEN is committed to fair and equitable compensation practices. We take into account various factors including the candidate's relevant experience, education, skills, LCATs rates and position level, and market competitiveness.
Perform all 7 steps of the Risk Management Framework (RMF) per DoDI 8510.01, producing required deliverables at each step
Develop, maintain, and update RMF packages including System Security Plans (SSP), Security Assessment Reports (SAR), Risk Assessment Reports (RAR), and Plans of Action & Milestones (POA&M)
Ensure compliance with federal, DoD, and DLA cybersecurity requirements, policies, and standards
FWI is building a team to provide Program Management Office (PMO) Support Services for the Defense Agencies Initiative (DAI). It has been recognized as a Top Workplace by the Washington Post in 2024 and 2025, offering excellent growth opportunities in a collaborative environment.