Compliance Jobs 2026 (Now Hiring) – Smart Auto Apply

Type: Fulltime

Location: Primarily remote with occasional on-site support in Powell, OH. Some travel may be required.

Overtime Exempt: Yes

Reports To: EVP, Operations and Security

Benefits: Medical, Dental, Vision, Paid Time Off, 401(k)

Duties & Responsibilities Overview:

With our foundation firmly established in Microsoft 365 GCC-High, we are looking for a dedicated IT Operations & Compliance Manager to own our technical ecosystem. This is a high impact, hands-on role responsible for maintaining our CMMC posture, optimizing our SharePoint architecture, and managing our digital presence. You will ensure that our small, agile team remains secure, compliant, and efficient without the friction often associated with high-security environments.

Duties & Responsibilities:

• CMMC Maintenance & Audit Readiness: Serve as the primary C-compliance manager. You will manage the System Security Plan (SSP), maintain the Plan of Action and Milestones (POA&M), and ensure we are 100% ready for a CMMC Level 2 assessment at any time.
• GCC-High Tenant Governance: Advanced administration of our secure environment. This includes managing Conditional Access policies, Intune device compliance, and Microsoft Purview (Information Protection/Sensitivity Labels) to ensure controlled unclassified information (CUI) is handled correctly.
• SharePoint & Workflow Optimization: Transition our team from email-centric work to structured SharePoint collaboration. You will build and manage sites, permissions, and automated workflows (Power Automate) that respect CUI boundaries.
• Security Monitoring: Proactively monitor Microsoft Defender for Endpoint and Identity, investigating alerts and conducting regular vulnerability scans.
• Web & Corporate Project Work: Act as the webmaster for our public-facing site (basic updates, security patching) and lead internal IT projects such as implementing hardware tokens (YubiKeys) or encrypted backup solutions. Also, support corporate project work.
• User Enablement: Train our employees on secure habits, such as how to properly label documents and use encrypted communication channels.

• Asset Management & Deployment
  • Asset Lifecycle Management: Oversee the full lifecycle of company hardware, including the procurement, inventory tracking, and maintenance of computers, mobile devices, and peripherals.
  • Technical Onboarding: Lead the deployment and configuration of workstations for new hires, ensuring all essential hardware (monitors, printers, phones) and software are functional for Day 1 readiness.
  • Inventory Optimization: Maintain a detailed and accurate asset registry to monitor hardware health, manage warranty status, and plan for necessary hardware refreshes.

• Daily IT Operations
  • Cross-Functional Technical Support: Serve as the primary point of contact for all daily IT inquiries, providing rapid troubleshooting for hardware, software, and connectivity issues.
  • Infrastructure Maintenance: Manage and support essential office equipment, including printers, networking hardware, and communication tools, to minimize organizational downtime.
  • Process Improvement: Identify recurring technical issues and document standard operating procedures (SOPs) to streamline day-to-day IT workflows and user self-service.

• Other duties as assigned.

Knowledge, Skills, and Abilities (KSAs):

• Compliance First Mindset: Candidate must understand that in GCC-High, standard IT shortcuts don't exist. We must follow the STIGs and documentation to the letter.
• Purview Power User: Expertise in data loss prevention (DLP) and sensitivity labeling is critical.
• SharePoint Architect: Ability to design a library structure that is intuitive for a small team but rigid enough for a federal auditor.
• Toolbox: Experience with Microsoft Entra ID (formerly Azure AD), Defender, and basic CMS management (e.g., WordPress).

Minimum Experience / Education:

• Bachelor's degree in Cybersecurity, Information Technology, or a related field OR equivalent military/professional experience (typically 4+ years of direct technical experience in a regulated environment).
• Deep understanding of NIST 800-171 and CMMC 2.0 requirements.
• Relevant Certifications: CompTIA Security+, CySA+, or Microsoft SC-300/SC-400.

Disclaimer:

The above information has been designed to indicate the general nature and level of work to be performed. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of the contractor assigned to this position.

Applying: If you feel you have the knowledge, skills and abilities for this position visit our careers page at www.armadausa.com.

ARMADA provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status, amnesty, or status as a covered veteran in accordance with applicable federal, state and local laws. ARMADA complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including, but not limited to, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.

Must be able to successfully pass a background check, and pre-employment drug testing.  Job offers are contingent upon results of background check and drug testing.