Cybersecurity Compliance Consultant (CCA) - REMOTE

BOOST delivers integrated back-office and technology solutions that empower government contractors to focus on their core mission and thrive in a competitive landscape. We bring deep expertise in cybersecurity, compliance, accounting, contracts, human resources, recruiting, and strategic advisory to solve the operational challenges faced by government contractors. We partner with our clients to navigate the complexities of government contracting, enabling them to scale with confidence. This role is full-time and fully remote, reflecting ’s virtual company culture.

Our technology practice is dedicated to fulfilling the cybersecurity, compliance, and IT requirements of government contractors. GovCon Enclave is a pioneering CMMC-compliant enclave solution designed to deliver a comprehensive, easily implemented, and fully managed cybersecurity compliance solution tailored for government contractors handling Controlled Unclassified Information (CUI).

Role Overview

We are seeking a Cybersecurity Compliance Consultant (CCA) to guide Department of Defense (DoD) contractors through the rigorous CMMC 2.0 and NIST 800-171certification process. This documentation-intensive, client-facing role requires the ability to bridge technical and compliance worlds, translating raw technical data into high-quality, defensible Policies, Standard Operating Procedures (SOPs), and System Security Plans (SSPs) that stand up to C3PAO audits.

Key Responsibilities

• Policy Development and Authoring: Lead the development and localization of all 14 CMMC policy domains. Authoring deliverables such as Policies, Procedures, Plans, and ancillary documents.
• GRC Platform Management: Act as the primary administrator for our GRC tool (e.g., FutureFeed, Apptega, or Microsoft Purview). You will track maturity, map evidence to assessment objectives, and maintain client progress dashboards.
• Evidence Collection and Orchestration: Coordinate with client technical leads to identify, collect, and validate evidence
• SSP & POA&M Ownership: Draft the System Security Plan (SSP)—and manage the Plan of Action and Milestones (POA&M) to ensure remediation gaps are closed.
• Client Advisory: Support team working with multiple clients, translating complex federal requirements into actionable task lists for their internal teams.

Qualifications

Required:

• 5+ years of Cybersecurity GRC, IT Audit, or Information Assurance
• Certified CMMC Assessor (CCA)
• Security+ certification
• Experience supporting C3PAO audits
• Deep working knowledge of NIST 800-171 (110 controls) and the CMMC Assessment Guide (320 assessment objectives)
• Exceptional technical writing skills with demonstrable ability to produce clear, defensible compliance documentation.
• Ability to manage multiple client engagements simultaneously while maintaining quality and attention to detail.
• Excellent client communication skills with the ability to translate complex technical requirements into actionable guidance for non-technical stakeholders.

Strongly Preferred:

• Hands-on experience with GRC platforms (specifically FutureFeed)
• Background working with small-to-midsize government contractors
• Experience developing SSPs or POAMs

Work Authorization Requirements

• Must be a U.S. Citizen

This Role Requires:

• Self-direction and accountability in a fully remote environment—you manage multiple client relationships independently with minimal oversight
• Exceptional technical writing skills with the ability to translate complex requirements into clear, actionable documentation
• Meticulous attention to detail and commitment to producing audit-ready deliverables
• Consultative mindset that balances regulatory requirements with practical business constraints
• Strong analytical and problem-solving capabilities when troubleshooting compliance gaps
• Collaborative approach when working with client technical leads and senior platform engineers
• Adaptability as compliance frameworks evolve and client needs change

What Success Looks Like

• Meticulous attention to detail and commitment to documentation quality
• Consultative mindset with a focus on client success and relationships
• Ability to balance technical precision with practical business constraints
• Self-direction and accountability in a fully remote environment

Physical Requirements:

• Prolonged periods of sitting at a desk and working on a computer.
• Close vision required.

Compensation and Benefits:

• Salary: $150K- $175K annually, commensurate with experience
• Comprehensive benefits package
• Remote work environment
• Opportunity to grow with a scaling company

BOOST LLC is proud to be an equal opportunity employer. We are committed to providing equal employment opportunities to persons without regard to race, creed, color, religion, national origin, sex, gender identity, marital status, citizenship status, age, veteran status or disability.

EEO m/f/d/v