Cybersecurity Compliance Specialist - Intermediate

NTT DATA strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now.

We are currently seeking a Cybersecurity Compliance Specialist - Intermediate to join our team in Indianapolis (REMOTE), Indiana (US-IN), United States (US).

NTT DATA Services Federal Government is seeking a highly capable Cybersecurity Compliance Specialist to join our team that will support the North American segment of the Rolls-Royce network. As a global leader in IT services, we deliver innovative solutions to drive mission-critical operations for our clients.

The Cybersecurity Compliance Specialist is:

• Responsible for ensuring the NOC meets Cybersecurity Maturity Model Certification (CMMC) requirements, aligning network and security operations with Department of Defense (DoD) standards for protecting Controlled Unclassified Information (CUI) and Federal Contract Information (FCI).
• This role conducts gap assessments, develops and maintains the System Security Plan (SSP) and Plan of Action and Milestones (POA&M), and coordinates third-party Certified Third-Party Assessor Organization (C3PAO) audits to achieve and sustain CMMC Level 2 certification, with readiness for Level 3 as needed.
• Working remotely, the Specialist collaborates with the NOC Director to integrate compliance into operational strategy, partners with Security/OT Analysts to implement controls (e.g., access control, audit logging), and ensures network configurations (managed by Network Engineers) meet NIST 800-171 and CMMC standards.
• They maintain compliance documentation, train staff on CMMC basics (in coordination with Rolls-Royce-provided training resources), and monitor ongoing adherence, safeguarding Rolls-Royce’s defense contracts and intellectual property.

Key Responsibilities: 

• Designs and implements technical solutions for protecting the confidentiality, integrity and availability of sensitive information.
• Provides technical evaluations of client systems and assists with making security improvements.
• Provides technical support in the areas of vulnerability assessment, risk assessment, network security and security implementation.
• Conducts testing and audit log reviews to evaluate the effectiveness of current security measures.
• Conducts security product evaluations, and recommends products, technologies and upgrades to improve the client’s security posture.
• Ensure CMMC Level 2 Compliance: Conduct gap assessments and align network and security operations with CMMC Level 2 and NIST 800-171 requirements to protect Controlled Unclassified Information (CUI) and Federal Contract Information (FCI), ensuring readiness for Level 3 as needed.
• Develop and maintain compliance documentation: Create and update the System Security Plan (SSP) and Plan of Action and Milestones (POA&M) to document compliance efforts and address deficiencies, maintaining accurate records for audits and ongoing adherence.
• Coordinate C3PAO audits: Collaborate with third-party Certified Third-Party Assessor Organizations (C3PAOs) to facilitate audits, ensuring successful achievement and sustainment of CMMC Level 2 certification for Rolls-Royce’s defense contracts.
• Integration compliance into operational strategy: Work remotely with the NOC Director to embed CMMC and DoD compliance requirements into the NCO’s operational strategy, aligning security practices with organizational objectives.
• Implement security controls: Partner with Security and OT analysts to implement and enforce controls, such as access control and audit logging, ensuring network configurations managed by Network Engineers meet CMMMC and NIST 800-171 standards.
• Monitor ongoing compliance: Continuously assess and monitor network and security operations to ensure sustained adherence to CMMC Level 2 requirements, safeguarding Rolls-Royce’s intellectual property and contract obligations.
• Training staff on CMMC requirements: Coordinate with Rolls-Royce-provided training resources to educate NOC staff on CMMC basics, fostering awareness and adherence to compliance processes and best practices.
• Protect sensitive information: Oversee compliance measures to safeguard Controlled Unclassified Information and Federal Contract Information, ensuring the security of critical assets and maintaining eligibility for defense contracts.

Basic Qualifications:

• US Citizenship required.

• Ability to obtain an interim Secret clearance or higher prior to start.

• Undergraduate/bachelors degree or equivalent combination of education and work experience.
• Minimum 5 years of cybersecurity compliance experience.
• Minimum 2 years of experience directly applying NIST 800-171, CMMC, or equivalent DoD frameworks in an IT/OT environment.
• Minimum 1 year of experience conducting compliance assessments, developing SSPs, or managing audit processes.
• Minimum 1 year of experience with Department of Defense (DoD) environments and requirements.

Preferred Qualifications: 

• Advanced CMMC expertise with a strong understanding of CMMC level 3 framework
• Proven ability to work remotely with cross-functional teams.
• Proven proficiency in documentation and audit management.
• Familiarity with security tools and experience with SIEM systems such as Splunk and ArcSight.
• Certifications: One of the following required within 90 days of hire: CISM (Certified Information Security Manager) or CISA (Certified Information Systems Auditor).

Where required by law, NTT DATA provides a reasonable range of compensation for specific roles. The starting pay range for this remote role is [$74,232 - $154,650]. This range reflects the minimum and maximum target compensation for the position across all US locations. Actual compensation will depend on a number of factors, including the candidate’s actual work location, relevant experience, technical skills, and other qualifications. This position may also be eligible for incentive compensation based on individual and/or company performance. This position is eligible for company benefits including medical, dental, and vision insurance with an employer contribution, flexible spending or health savings account, life and AD&D insurance, short and long term disability coverage, paid time off, employee assistance, participation in a 401k program with company match, and additional voluntary or legally-required benefits.

About NTT DATA

NTT DATA is a $30 billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long term success. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure and connectivity. We are one of the leading providers of digital and AI infrastructure in the world. NTT DATA is a part of NTT Group, which invests over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. Visit us at us.nttdata.com

NTT DATA endeavors to make https://us.nttdata.com accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact us at https://us.nttdata.com/en/contact-us. This contact information is for accommodation requests only and cannot be used to inquire about the status of applications. NTT DATA is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status. For our EEO Policy Statement, please click here. If you'd like more information on your EEO rights under the law, please click here. For Pay Transparency information, please click here.