Cybersecurity Compliance Advisory Analyst I

Do you have strong analytical and communication skills, thrive in a collaborative environment, and have an interest in the US Department of Defense, US Military, or Aerospace & Defense industry? We may have the perfect opportunity for you.

As a Cybersecurity Compliance Advisory Analyst I at Sierra Nevada Company, you will be an integral part of our Governance, Risk, and Compliance (GRC) team - learning and supporting efforts to ensure our organization adheres to stringent cybersecurity regulations and standards. This role is primarily focused on cybersecurity compliance advisory, with responsibilities spanning CMMC 2.0 program support, gap analysis, assessment preparation, and translating complex regulatory frameworks (NIST SP 800-171, CMMC, and DFARS 252.204-7012) into actionable guidance. You will also contribute to contract compliance reviews and supply chain oversight as part of a well-rounded compliance function.

This is an excellent opportunity for an emerging professional to build a specialized foundation in cybersecurity compliance within a mission-driven, national security environment - with clear pathways for growth and increasing responsibility.

As SNC''s corporate team, we provide the company and its business areas with strategic direction and business support spanning executive management, finance and accounting, operations, human resources, legal, IT, information security, facilities, marketing, and communications.

• Support the GRC team in developing and maintaining a unified CMMC 2.0 and DFARS compliance program across the organization.
• Assist in interpreting and translating cybersecurity regulations (NIST SP 800-171, CMMC 2.0, and DFARS 252.204-7012) into actionable guidance for internal stakeholders.
• Support gap analyses to identify control deficiencies and assist in developing remediation recommendations.
• Help system owners gather and organize documentation in preparation for internal and external assessments, readiness reviews, and mock assessments.
• Assist in collecting data for continuous monitoring programs and compliance KPIs.
• Research and track evolving cybersecurity regulations, standards, and best practices relevant to the Defense Industrial Base (DIB).
• Assist in reviewing contracts and solicitations to identify applicable cybersecurity requirements and compliance obligations.
• Help ensure procurement and subcontract processes align with DFARS 252.204-7012, CMMC 2.0, and organizational cybersecurity requirements.
• Support monitoring of supplier and vendor cybersecurity compliance against contractual obligations and regulatory standards.

Qualifications You Must Have:

• Bachelor's degree in a related field.
• 0-2 in a related role.
• Relevant experience can be considered as a substitute for the required educational qualifications. In the absence of a degree, a minimum of 4 years of related experience is required.
• Basic understanding of cybersecurity principles and practices.
• Familiarity with network security, threat analysis, and incident response.
• Knowledge of data security administration principles, methods, and techniques.
• Familiarity with domain structures, user authentication, and digital signatures.
• Foundational understanding of, or strong desire to learn, NIST SP 800-171, DFARS 252.204-7012, and the Cybersecurity Maturity Model Certification (CMMC) 2.0.
• Strong analytical and organizational skills, with keen attention to detail.
• Strong written and verbal communication skills, with the ability to translate complex regulatory requirements into clear, actionable guidance.
• Ability to learn quickly, manage multiple priorities, and work effectively as part of a collaborative team.

Qualifications We Prefer:

• Ability to read and interpret security and technical documentation.
• Proven track record of maintaining the confidentiality of high-sensitivity projects and data.
• Internship or project experience related to cybersecurity compliance, IT audit, or governance, risk, and compliance (GRC).
• Familiarity with contract language, procurement processes, or supply chain concepts within a government contracting environment.
• Familiarity with ISO 9001 or similar quality management frameworks.
• Relevant entry-level certifications (e.g., CompTIA A+, Network+, Security+) are a plus, but not required.
• Exposure to or academic coursework in federal regulatory frameworks, defense acquisition, or government contracting.

Essential Functions:

• Ability to work in an office or hybrid environment.
• Prolonged periods sitting at a desk and working on a computer.
• May require occasional lifting of up to 20 pounds.
• Ability to travel as needed.

This posting will be open for application for a minimum of 5 days and may be extended based on business needs.

SNC offers a generous benefit package, including medical, dental, and vision plans, 401(k) with 150% match up to 6%, life insurance, 3 weeks paid time off, tuition reimbursement, and more.

IMPORTANT NOTICE:

This position requires the ability to obtain and maintain a Secret U.S. Security Clearance. U.S. Citizenship status is required as this position needs an active U.S. Security Clearance for employment. Non-U.S. citizens may not be eligible to obtain a security clearance. The Department of Defense Consolidated Adjudications Facility (DoD CAF), a federal government agency, handles the adjudicative aspects of the security clearance eligibility process for industry applicants. Adjudicative factors which affect the outcome of the eligibility determination include, but are not limited to, allegiance to the U.S., foreign influence, foreign preference, criminal conduct, security violations and illegal drug use.

Learn more about the background check process for Security Clearances.

SNC is a global leader in aerospace and national security committed to moving the American Dream forward. We're known and respected for our mission and execution focus, agility, and disruptive and rapid innovation. We provide leading edge technologies and transformative solutions that support our nation's most critical security needs. If you are mission-focused, thrive in collaborative environments, and want to make our country stronger with state-of-the-art technologies that safeguard freedom, join our team!

SNC is an Equal Opportunity Employer committed to an environment free of discrimination. Employment decisions are made based on merit without regard to race, color, age, religion, sex, national origin, disability, status as a protected veteran or other characteristics protected by law.