Key skills
Cyber SecurityERPSalesforceCRMAgileLeadershipProject ManagementChange ManagementSales
About this role
Role Overview
- Define, document, and maintain secure business processes supporting export-controlled and federally funded programs subject to EAR, ITAR, FAR, and DFARS requirements.
- Serve as the cross-functional lead for export-controlled and government contract programs, ensuring alignment across Technology, Legal, Sales, Operations, Quality, and Finance.
- Embed NIST 800-171 security controls, CMMC practices, and FAR/DFARS cybersecurity requirements (including DFARS 252.204-7012 and related clauses) into operational workflows and policies.
- Lead initiatives to develop, maintain, and mature CMMC-aligned systems and processes, including readiness for third-party assessments.
- Conduct internal audits, gap assessments, and risk analyses related to export controls, cybersecurity compliance, and federal contract obligations.
- Develop and maintain documentation required for government contracts, including SSPs, POA&Ms, policies, and process controls.
- Build dashboards and KPIs to monitor compliance health, audit readiness, and continuous improvement initiatives.
- Develop and deliver training programs for internal stakeholders and external partners on export-controlled workflows, CMMC requirements, and FAR/DFARS compliance obligations.
- Drive continuous improvement initiatives using Lean, Six Sigma, or Agile methodologies to enhance both compliance and operational efficiency.
- Lead structured change management efforts to ensure smooth adoption of new security controls, systems, and regulatory requirements.
- Contribute to and maintain compliance within the company’s Quality Management System (QMS).
Requirements
- 4+ years of experience in process engineering, project management, or compliance leadership within regulated industries.
- Direct experience supporting U.S. government contracts subject to FAR and DFARS requirements.
- Demonstrated experience implementing and maintaining compliance with NIST SP 800-171 controls.
- Hands-on experience developing, managing, or preparing organizations for CMMC certification (Level 1–3 preferred).
- Experience interpreting and operationalizing DFARS cybersecurity clauses (e.g., 252.204-7012, 7019, 7020, 7021).
- Experience managing export-controlled technical data under EAR and ITAR, including process controls for restricted data environments.
- Experience designing secure workflows in high-information-security environments supporting defense or federal customers.
- 3+ years leading cross-functional continuous improvement or process optimization initiatives.
- Experience within manufacturing, supply chain, aerospace, defense, or regulated services environments required.
- Strong working knowledge of compliance documentation frameworks, including SSPs, POA&Ms, and audit artifacts.
- Must qualify as a U.S. Person in compliance with U.S. ITAR regulations.
- Excellent leadership, project management, and stakeholder engagement skills.
- Strong analytical and critical-thinking capabilities with a security-first mindset.
- Ability to simplify complex regulatory requirements into clear, actionable processes.
- Skilled in workshop facilitation, training delivery, and structured change management.
- Digitally fluent; comfortable working within ERP, CRM, and PLM systems (e.g., NetSuite, Salesforce, Arena).
- Self-starter who thrives in ambiguous, fast-paced, and evolving regulatory environments.
Tech Stack
- Cyber Security
- ERP
Benefits
- Competitive medical, dental, and vision insurance
- 401K plan
- Monthly Virtual Work stipend for things like food, internet, travel, pet care, health and wellness
- Annual Education stipend
- Parental leave programs
- Paid volunteer days
- Onboarding setup, including: standing desk, laptop, monitor, and chair, and a stipend for additional items such as headphones, blue light glasses, or any other ergonomic supplies you may want or need
- And much, much more!