✦ Luna Orbit — Cybersecurity

CMMC / NIST Consultant / Analyst

at Hotman Group

📍 Remote, US Remote Posted April 02, 2026
Apply Now → ← Browse All Jobs

Position Details

Type Contract
Experience mid
Exp. Years 3-5 years
Education Not Specified
Category Cybersecurity

About this role

CMMC/NIST consultant/analyst to support client projects involving CMMC readiness, SSP development, NIST SP 800-171/800-53, and FedRAMP documentation in a remote consulting setting.

Key Responsibilities

  • Support client engagements related to CMMC readiness, develop and maintain SSPs, assist with NIST 800-171/800-53 and FedRAMP documentation, gather evidence, draft control narratives, identify gaps and support POA&Ms, contribute to readiness efforts

Technical Overview

Hands-on GRC experience with CMMC-related work, SSPs and remediation documentation; remote, independent work capable.

Ideal Candidate

The ideal candidate is a mid-level cybersecurity consultant with hands-on CMMC experience and SSP documentation capabilities, able to map controls, gather evidence, and track remediation in a remote, contract setting.

Must-Have Skills

Hands-on experience with CMMC-related work (Required)Experience working with SSPspoliciesproceduresevidence collectionand remediation documentation (Required)

Nice-to-Have Skills

Experience supporting CMMC Level 2 effortsCUI scoping or enclaves experiencePOA&M crosswalksCCPCCACISSPCISMor CISA certifications

Required Skills

CMMCNIST SP 800-171NIST SP 800-53FedRAMPSystem Security Plans (SSP)evidence collectioncontrol documentationPOA&Mremediation trackingpolicy narratives

Hard Skills

CMMCNIST SP 800-171NIST SP 800-53FedRAMPSystem Security Plans (SSP)evidence collectioncontrol documentationPOA&Mremediation trackingpolicy narratives

Soft Skills

writingdocumentationorganizationindependenceclient-facing professionalism

Certifications

Preferred

CCPCCACISSPCISMCISA

Industry & Role

Industry Consulting & Advisory
Job Function Provide CMMC/NIST GRC consulting and documentation support for client engagements
Role Subtype GRC Analyst
Tech Domains Cybersecurity

Keywords for Your Resume

cMMC consultantnist sp 800-171nist sp 800-53fedrampsystem security planssspevidence collectioncontrol documentationpoa&mremediation trackingpolicy narrativesgRCcybersecurityremotecontractus work authorizationcmmcpolicy documentationcontrol mapping

Deal Breakers

No CMMC experience, Lack of SSP/documentation experience, Inability to work remotely

Apply for this Position →

Get matched to jobs like this

Luna finds roles that fit your skills and career goals — no endless scrolling required.

Create a Free Profile