Cyber Compliance and Policy Lead
@ Nooks

Hybrid
$150,000
Hybrid
Full Time
Posted 22 days ago

Your Application Journey

Personalized Resume
Apply
Email Hiring Manager
Interview

Email Hiring Manager

XXXXXXXXXX XXXXXXXXXXX XXXXXXXXXX******* @nooks.com
Recommended after applying

Job Details

About Nooks

Are you seeking an exciting and unique opportunity to support national security? At Nooks, a startup pioneering Classified Infrastructure-as-a-Service, you can become an equity owner in a nascent industry. We are building a nationwide network of accredited classified spaces and systems to equip our nation’s warfighters with state-of-the-art technologies. Innovation, collaboration, and a service-first mindset define us.

About The Role

The Cyber Compliance and Policy Lead is responsible for developing, implementing, and governing enterprise-wide cybersecurity policies and standards at Nooks. This role ensures that our infrastructure, systems, and personnel adhere to stringent DoD and Intelligence Community requirements by translating complex regulations into actionable policies and training.

Key Responsibilities

  • Policy Development & Governance: Author and maintain cybersecurity policies aligned with CMMC, DAAPM, NIST SP 800-53/171 and other directives.
  • Compliance Management: Lead CMMC readiness, manage internal audits, and track POA&Ms.
  • Training & Awareness: Develop and implement comprehensive security training programs for varying roles.
  • Strategic Support: Advise senior management and security teams on policy implementation and interpretation.
  • Audit & Accreditation Support: Prepare documentation and evidence for external audits and act as key contact for regulatory bodies.

Required Qualifications

  • Active Top Secret (TS) clearance with SCI eligibility.
  • 7-10 years experience in Cybersecurity; 4+ years in policy development, compliance, and auditing within DoD/IC.
  • Expertise in CMMC, RMF, NIST SP 800-53/171, and DAAPM.
  • Proven experience in writing clear, actionable documentation and delivering training programs.
  • DoD 8570/8140 IAM Level II certification and preferably CISSP or CISM.

Preferred Qualifications

  • Experience as a formal security control assessor or auditor.
  • CMMC Certified Professional (CCP) or Certified Assessor (CCA) certification.
  • Experience with TS/SCI or Special Access Program (SAP) environments.
  • Cloud security compliance experience in AWS GovCloud or Azure Government.
  • Bachelor’s degree in Cybersecurity, Information Technology, or related field.

Travel & Eligibility

This role requires 35% travel. Applicants must be US Citizens with an active Top Secret Clearance.

Salary Range

$135,000 USD - $165,000 USD annually.

Key skills/competency

  • Cybersecurity
  • Compliance
  • Policy Development
  • Audit
  • Training
  • CMMC
  • RMF
  • NIST
  • DoD/IC
  • Risk Management
Apply without a personalized resume

How to Get Hired at Nooks

🎯 Tips for Getting Hired

  • Research Nooks culture: Understand their mission and startup dynamics.
  • Tailor your resume: Highlight DoD and compliance expertise.
  • Detail security certifications: Emphasize TS clearance and IAM experience.
  • Prepare case studies: Showcase real-world compliance and policy work.
  • Practice interview questions: Focus on regulatory framework explanations.

📝 Interview Preparation Advice

Technical Preparation

Review CMMC and RMF frameworks.
Study NIST SP 800-53 standards.
Practice developing audit documentation.
Update cybersecurity policy writing skills.

Behavioral Questions

Describe a challenge in compliance implementation.
Explain experience handling audit feedback.
Share teamwork in policy development scenarios.
Discuss adapting to regulatory changes.

Frequently Asked Questions