Senior Associate – Cybersecurity & Compliance Government Services

GENERAL DESCRIPTION 

Senior Associates are primarily responsible for hands-on execution of client engagements while continuing to build specialization across one or more service lines. They work closely with Managers and Directors to deliver high-quality cybersecurity and compliance assessments and advisory services. 

As a Senior Associate – Cybersecurity & Compliance (CMMC / Federal Services), you will play a key role in executing engagements related to CMMC,  FedRAMP, and GovRAMP, along with broader cybersecurity compliance frameworks. You will support gap assessments, readiness engagements, and formal assessments across a variety of client environments, including government contractors, technology companies, SaaS providers, and public sector-focused organizations. 

Senior Associates are expected to contribute across the full project lifecycle and may assist in mentoring junior team members while developing their own technical and professional expertise. 

DUTIES AND RESPONSIBILITIES

• Execute cybersecurity and compliance assessments across frameworks such as CMMC, NIST 800-171/53, FedRAMP, and GovRAMP  
• Perform end-to-end project execution, including planning, scoping, fieldwork, testing, and delivery of final reports  
• Conduct interviews with client subject matter experts across technical and business functions (e.g., IT, security, DevOps, HR, compliance)  
• Perform walkthroughs of client environments, including on-premise, cloud, and hybrid architectures  
• Evaluate the design and operating effectiveness of security controls against applicable standards  
• Review system configurations, architectures, and security tools to assess compliance and risk  
• Analyze documentation such as SSPs, policies, procedures, and supporting evidence  
• Execute testing procedures, document results, and develop clear, high-quality client deliverables  
• Identify control gaps, assess risk, and provide practical remediation recommendations  
• Support readiness and advisory engagements, including gap assessments and remediation planning (CMMC, FedRAMP, GovRAMP)  
• Assist with engagement scoping, project planning, and timeline management  
• Manage multiple engagements simultaneously and ensure alignment with deadlines and quality expectations  
• Communicate project status, risks, and key insights to internal teams and clients  
• Build and maintain strong client relationships and serve as a point of contact for engagement-related questions  
• Participate in project kick-off and closing meetings, including presenting findings and recommendations  
• Collaborate with internal teams to ensure consistency in methodologies and deliverables  
• Assist in mentoring and training junior team members and participate in quality review processes  
• Contribute to internal initiatives such as methodology development, recruiting, and thought leadership  
• Stay current with evolving regulations and standards, including CMMC, NIST, FedRAMP, and GovRAMP

REQUIRED QUALIFICATIONS   

• Bachelor’s degree in Information Systems, Accounting, Finance, Cybersecurity, or a related field. 
• 2–5 years of experience in cybersecurity, IT audit, compliance, or related professional services  
• Working knowledge of cybersecurity and compliance frameworks such as NIST, CMMC, FedRAMP, GovRAMP, ISO, or SOC.  
• Strong understanding of IT systems, networks, and/or cloud environments  
• Excellent written and verbal communication skills  
• Strong organizational and time management abilities with attention to detail  
• Ability to manage multiple assignments and work both independently and within a team environment  
• Proficiency in Microsoft Office (Word, Excel, PowerPoint)  

DESIRED QUALIFICATION

• Willingness to pursue relevant professional certifications (e.g., CISA, CISM, CISSP, CCP, CCA , etc.) 
• Experience supporting assessments across multiple compliance frameworks (CMMC, FedRAMP, GovRAMP, SOC, ISO, etc.) 
• Exposure to federal, state, or public sector compliance environments 
• Experience with readiness assessments, control validation, and remediation support  
• Strong client service mindset with demonstrated ability to build relationships  
• Proven ability to manage projects and deliver high-quality results  
• Interest in continuous learning and pursuing additional certifications  
• Professional services or consulting experience in a related field.  
• Ability to lift and move up to 15 pounds 
• Ability to sit for prolonged periods of time. 
• Ability to stand, walk, bend, or reach as necessary for job tasks. 
• Ability to use hands/fingers for typing, writing, or handling materials. 

COMPANY DESCRIPTION

360 Advanced is a Cybersecurity and Compliance professional services firm that provides customized, integrated solutions.  Our clients range across industries and extend from small businesses to Fortune 500. We work with client operations in over 40 states and on five continents globally.  We are based in downtown St. Petersburg and are looking for a Senior Associate to join our team.