100% Employee Owned

Compliance & Security Engineer

Compliance and Security Engineer

We are seeking a Compliance & Security Engineer to support and enhance our compliance and cybersecurity operations. This role is primarily focused on helping clients achieve and maintain compliance with frameworks such as CMMC (Level 2) and NIST SP 800-171, particularly within the DoD manufacturing sector.

In addition to compliance initiatives, this role contributes to security engineering and incident response efforts across cloud, on-premises, and hybrid environments. The ideal candidate is a well-rounded cybersecurity professional with experience in compliance, risk management, and security operations.

Requirement: U.S. Citizenship is required due to the nature of DoD-related work.

Key Responsibilities:

Compliance & Risk Management

  • Guide clients through achieving and maintaining compliance with frameworks such as NIST SP 800-171, CMMC
  • Conduct gap assessments and develop Plans of Action & Milestones (POA&M) 
  • Support audit readiness with evidence collection, reporting, and documentation
  • Maintain accurate records within the organization’s Governance, Risk, and Compliance (GRC) platform
  • Perform vulnerability scans, risk assessments, and configuration reviews.
  • Support additional frameworks as needed (e.g., PCI-DSS, HIPAA, ISA 27001)

Security Engineering & Operations (Secondary Focus)

  • Assist in the design and implementation of secure architecture across cloud and hybrid environments (AWS, Azure, GCP)
  • Configure and manage security tools such as EDR, SIEM, MFA, firewalls, and VPN solutions
  • Develop and maintain secure configuration baselines and automation for scalable deployments


Incident Response & Continuous Improvement

  • Participate in incident response activities, including investigation, containment, and remediation
  • Develop and maintain incident response playbooks and procedures
  • Collaborate with SOC/NOC teams to monitor, detect, and respond to threats
  • Contribute to the continuous improvement of incident response capabilities


Policy, Documentation, & Training

  • Develop and maintain security policies, standards, and procedures aligned with compliance frameworks
  • Create client-specific documentation tailored to individual environments and regulatory requirements
  • Communicate effectively with both technical and non-technical stakeholders
  • Lead or support client meetings related to compliance, risk, and incident response
  • Contribute to internal knowledge sharing and team development
Qualifications:
  • Working knowledge of cybersecurity frameworks (CMMC, NIST, PCI-DSS, ISO 27001, HIPAA)
  • Strong understanding of network infrastructure, systems, and security technologies
  • Experience securing cloud environments (AWS, Azure / 365, or GCP), including IAM and native security controls
  • Proven troubleshooting and analytical skills in high-pressure environments
  • Strong written and verbal communication skills
  • Ability to manage multiple client engagements and priorities
Education and Experience:
  • 4+ years of experience in compliance, cybersecurity, or security engineering
  • Experience supporting DoD-related compliance frameworks (CMMC / NIST 800-171 preferred)
  • Bachelor’s degree in Cybersecurity, Computer Science, or related field (or equivalent experience)
  • Experience in an MSP, MSSP, or SOC environment is highly preferred
Certifications (Preferred)
  • Certified CMMC Professional (CCP)
  • CompTIA Security+
  • CISSP or CISM
  • GIAC Certification
  • ISO 27001 Lead Implementer
Compensation & Benefits
  • Competitive salary (commensurate with experience)
  • Performance-based bonus opportunities
  • Comprehensive benefits package, including:
    • Company-shared cost medical and dental plans
    • 401(k) plan with company matching
    • Annual bonus program and performance awards
    • Accelerated PTO schedule
  • Professional growth opportunities, including:
    • Access to ongoing training resources, virtual labs, and study materials
    • Company-funded certification exams
  • Employee Stock Ownership Plan (ESOP) with annual stock contributions
Additional Details
  • TAB operates a 24/7 support service, and technicians are occasionally required to assist during evenings or weekends in the event of a client emergency on a rotational basis.
  • This role is ideal for self-motivated, ambitious individuals who thrive in a fast-paced, dynamic work environment.
Compensation
  • Starting salary range: $105,000 – 125,000 annually
  • Non-exempt
Apply for the Compliance & Security Engineer Position

Industries

Customized infrastructure solutions designed to establish a stable and scalable technology.

IT Services

Comprehensive IT support to ensure your business operates efficiently and securely.

Compliance Solutions

Tailored strategies to protect your business while ensuring regulatory compliance and efficiency.

Cyberattack Risk Assessment

Thorough evaluations to identify vulnerabilities and enhance your cybersecurity measures.

Cloud Services

Access powerful cloud solutions that enhance flexibility and scalability for your operations.

Disaster Recovery

Robust planning to safeguard your data and ensure quick recovery from unexpected disruptions.