Compliance & Security Manager
We are seeking a Compliance & Security Manager to build and lead the compliance, security, and export control programs at Deterrence as we transition into federal contracting with the U.S. Department of Defense (DoD). This role will own the design, implementation, and management of all compliance frameworks required to operate as a trusted defense contractor.
The ideal candidate will have hands-on experience with federal contracting compliance requirements, cybersecurity frameworks, export controls, and foreign ownership mitigation (FOCI). They will be responsible for establishing robust systems, documentation, and processes that ensure Deterrence meets or exceeds federal security and compliance standards.
This role requires a deep understanding of DoD contractor obligations, including NIST 800-171, CMMC, DFARS, ITAR/EAR, industrial security, and FOCI mitigation.
Key Responsibilities
Compliance Framework Development
Design, implement, and maintain Deterrence’s compliance and security infrastructure to support federal contracting operations.
Develop and manage the company’s System Security Plan (SSP), Plan of Action and Milestones (POA&M), and related NIST 800-171 / CMMC Level 2/3 documentation.
Draft and operationalize company-wide policies covering compliance, cybersecurity, insider threat, and export control.
Export Control & FOCI Mitigation
Establish and oversee ITAR/EAR compliance, including export licensing, technology control plans, and foreign national access controls.
Lead Deterrence’s FOCI mitigation strategy, preparing mitigation plans and working with DCSA and government partners on facility clearance readiness.
Industrial Security & Contract Readiness
Support the development of Deterrence’s industrial security and insider threat programs to prepare for future facility clearance requirements.
Ensure readiness for audits, certifications, and government reporting tied to DoD contract obligations. Serve as the primary interface with federal agencies (e.g., DCSA, DoD program offices) on compliance and security matters.
Internal Education, Risk Management & Continuous Improvement
Develop and deliver internal training on compliance, security, and export obligations.
Conduct internal audits, gap analyses, and risk assessments; implement remediation plans and continuous improvement initiatives.
Collaborate with engineering, operations, business development, and legal teams to embed compliance into Deterrence’s operations and growth plans.
Required Qualifications
5+ years of experience in compliance, cybersecurity, export control, or industrial security within the defense, aerospace, or federal contracting sector.
Strong working knowledge of NIST 800-171, CMMC Level 2/3, DFARS, ITAR, EAR, and FOCI mitigation requirements.
Proven experience developing or managing System Security Plans (SSP) and related compliance documentation.
Ability to design and implement compliance frameworks in a startup or small business environment.
Excellent documentation, organizational, and cross-functional communication skills.
Strong analytical, problem-solving, and risk management abilities.
Preferred Qualifications
Experience supporting or managing FOCI mitigation plans and facility clearance preparation.
Relevant certifications such as CISSP, CISA, CISM, CCEP, or similar.
Prior experience developing an insider threat program.
Background working with DCSA and other government compliance stakeholders.
Experience in dual-use or emerging defense technologies (AI, robotics, autonomy, energetics).
Working Environment
This is a hands-on role requiring close collaboration across the company to build Deterrence’s compliance and security infrastructure from the ground up. The successful candidate will be comfortable balancing strategic design with tactical execution, operating independently in a fast-paced, mission-driven environment. Occasional travel may be required for government meetings, audits, or partner engagements.