Security Engineer
Senior consultant guiding SMBs through CMMC 2.0, NIST, and ISO 27001 compliance, conducting risk assessments, audits, and implementing security controls to protect data and operations.
This is a remote position.
Job Title: Cybersecurity Compliance Consultant
Location: East Coast/West Coast preferred (Frequent Travel Required)
Job Summary:
We are looking for an experienced Cybersecurity Compliance Consultant to help small and medium-sized businesses (SMBs) ensure they meet industry security regulations and compliance requirements. This role requires frequent on-site visits to assess, advise, and implement cybersecurity best practices, helping businesses safeguard their data and operations against cyber threats. You will act as a trusted advisor, guiding clients through regulatory frameworks such as CMMC 2.0, NIST, ISO 27001, and other industry standards.
Key Responsibilities:
Compliance & Regulatory Assessments:
Conduct on-site security and compliance assessments for SMBs to evaluate adherence to cybersecurity regulations.
Provide detailed reports with compliance gaps, risk analysis, and tailored recommendations to meet industry standards.
Assist businesses in preparing for third-party audits and certifications.
Security Implementation & Advisory:
Guide SMBs in developing and implementing security policies, procedures, and technical controls to align with regulatory requirements.
Assist in configuring and optimizing network security, firewalls, access controls, and endpoint protection.
Provide remediation plans for identified vulnerabilities and ensure businesses adopt best security practices.
Incident Response & Risk Mitigation:
Help businesses develop and refine incident response plans to quickly detect, respond to, and recover from security breaches.
Conduct risk assessments and advise on cyber resilience strategies to reduce attack surfaces.
Train key stakeholders on cyber risk management and security awareness.
Security Training & Client Collaboration:
Educate business owners, IT teams, and employees on cyber hygiene, phishing risks, and security best practices.
Work closely with SMB leadership to prioritize security investments and implement cost-effective solutions. Serve as a long-term cybersecurity advisor, helping businesses stay compliant as regulations evolve.
Requirements
Qualifications:
Bachelor’s degree in Information Technology, or a related field (or equivalent experience).
Industry certifications highly preferred (e.g., CISSP, CISM, CompTIA Security+, CEH, CISA). Strong expertise in cybersecurity compliance frameworks (CMMC 2.0, NIST 800-171, ISO 27001, HIPAA, PCI-DSS).
Experience conducting security audits, gap assessments, and risk analysis.
Knowledge of firewalls, VPNs, SIEM, EDR, vulnerability management, and security monitoring.
Strong ability to communicate cybersecurity concepts to non-technical business lead
Posted June 23, 2026