Project Manager CMMC

About This Role

Lead an IT infrastructure and cybersecurity initiative to build a secure CMMC-aligned enclave in Azure. Manage execution across internal stakeholders and outsourced managed service providers to ensure delivery aligns with technical requirements, compliance expectations, and timelines, supporting third-party certification readiness.

Responsibilities

• Lead end-to-end project execution for the expanded design, build, and rollout of a secure Azure-based CMMC enclave, supporting multiple business entities
• Serve as the primary project manager coordinating across IT/Security stakeholders, business units, and the MSP delivering the environment
• Develop and maintain the integrated project plan, timeline, milestones, and RAID log (risks/actions/issues/decisions)
• Manage vendor/MSP&MSSP delivery including scope alignment, execution tracking, dependencies, deliverable acceptance, and issue escalation
• Establish clear scope boundaries between the enclave "core baseline” (shared services) and business-specific customization requirements
• Coordinate technical implementation and readiness activities delivered through the MSP
• Drive creation of a repeatable multi-business onboarding framework, including intake, standard configurations, variation handling, and validation
• Partner with Cybersecurity and compliance stakeholders to translate CMMC/NIST expectations into actionable work packages and measurable deliverables
• Ensure operational processes are defined and adopted for the enclave, including access provisioning, change control, incident response coordination, and escalation paths
• Drive documentation and audit readiness: policies, SOPs, control narratives, diagrams, and proof of operation (with evidence gathered from both internal teams and the MSP)
• Coordinate testing, validation, cutover planning, and go-live readiness; ensure post-launch stabilization ("hypercare”) and transition to steady-state operations
• Provide clear stakeholder communications and executive-level status reporting, proactively surfacing risks, schedule threats, and mitigation options
• Process and track one-time and re-occurring project invoices against the budget. Develop, manage, and maintain the operating cost model for each of the included businesses

Requirements

• 7+ years of IT project/program management experience, including technical infrastructure and security programs
• Demonstrated success managing delivery through third-party vendors / managed service providers
• Proven track record delivering complex, cross-functional initiatives involving infrastructure, identity, networking, and cybersecurity
• Strong familiarity with Azure and Microsoft security ecosystem (Azure core services and governance concepts, Entra ID, Microsoft Defender, Intune, Microsoft Sentinel)
• Working understanding of compliance-driven delivery and audit readiness (CMMC, NIST 800-171)
• Ability to manage multiple stakeholders and onboard multiple business units
• Strong documentation discipline and ability to drive teams to produce assessor-ready evidence
• Excellent communication and leadership skills
• Proficiency with MS Project / Smartsheet / Jira / SharePoint, Visio (or similar)

Qualifications

• 7+ years of IT project/program management experience, including technical infrastructure and security programs

Nice to Have

• Experience supporting environments for CMMC Level 2 readiness and/or NIST SP 800-171 implementation programs
• Strong knowledge of secure networking concepts (segmentation, private connectivity, firewalling, zero trust)
• Experience coordinating third-party assessment readiness activities (mock audits, evidence walkthroughs, remediation plans)
• PMP certification
• CISSP certification
• CISM certification
• Azure certifications (AZ-104/AZ-305/SC-100)

Skills

* Required skills