This job offer is no longer available
Compliance Engineer
CyberSheath
- New York, New York, United States
- New York, New York, United States
About
CyberSheath integrates compliance and threat mitigation efforts and eliminates redundant security practices that don’t improve and, in fact, may weaken an organization’s security posture. Our professionals advise clients where to stop spending, where to invest, and how to take what they are already doing and integrate it in a way that delivers improved security.
Successful candidates for CyberSheath are self‑motivated, think out of the box, work, and solve issues independently. Confident, ‘doers’ who ‘get the job done’ and strive to ‘do the right thing, even when no‑one is looking’ are the types of candidates who thrive in our culture. Additionally, our most successful team members are self‑starters and willing to put on many hats to succeed. CyberSheath is fast‑growing and seeks candidates who want to be part of our upward trajectory.
CMMC Compliance Engineer The CMMC Compliance Engineer will be responsible for designing, implementing, and maintaining data protection controls that safeguard Controlled Unclassified Information (CUI) across Microsoft 365 and Azure environments in alignment with CMMC Level 2 and NIST 800‑171 requirements.
Key Responsibilities
Design, deploy, and manage Microsoft Purview Data Loss Prevention (DLP) policies across Exchange Online, SharePoint Online, OneDrive, Teams, and endpoint workloads.
Implement and maintain Microsoft Purview sensitivity labels, including label taxonomy, protection settings, encryption, and user experience alignment.
Configure and enforce auto‑labeling and trainable classifiers to identify and protect CUI, export‑controlled data, and other regulated data types.
Integrate DLP and labeling controls with Conditional Access, endpoint controls, and Defender workloads to support defense‑in‑depth.
Tune DLP policies to balance compliance enforcement with business usability, minimizing false positives while maintaining audit integrity.
Support audit readiness and evidence collection, including documentation of DLP configurations, labeling schemas, policy enforcement, and control mappings to NIST 800‑171 and CMMC practices.
Collaborate with compliance, security operations, and engineering teams to remediate data handling gaps identified through assessments, audits, or incident response activities.
Required Experience
Hands‑on experience implementing Microsoft Purview DLP in regulated or compliance‑driven environments.
Practical experience with sensitivity labels, encryption, content marking, and access restrictions.
Experience protecting CUI or similarly regulated data within Microsoft 365.
Strong understanding of how DLP and information protection map to CMMC Level 2 / NIST 800‑171 requirements.
Experience supporting compliance audits or assessments with technical evidence and configuration artifacts.
Preferred Experience
Experience in GCC or GCC High Microsoft environments.
Familiarity with Endpoint DLP, Insider Risk Management, or Information Governance features.
Experience integrating DLP with Defender for Endpoint, Microsoft Sentinel, or SOAR workflows.
Background working with DoD contractors or highly regulated industries.
Remote Work
100% Remote work environment with occasional (25%) travel to client sites.
Budgeted Pay Range $110,000 - $135,000 USD
CyberSheath is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender identity, national origin, age, protected veteran status, or disability.
#J-18808-Ljbffr
Languages
- English
Notice for Users
This job was posted by one of our partners. You can view the original job source here.