IT Compliance Lead
Role details
Job location
Tech stack
Job description
Voyager Technologies is seeking a detail-oriented, mission-driven IT Compliance / GRC Analyst to lead cybersecurity governance, regulatory compliance, and risk management activities across our space, aerospace, and defense programs.
This role ensures the organization can securely handle Controlled Unclassified Information and (CUI), ITAR/export-controlled data while maintaining continuous compliance with:
- NIST SP 800-171
- CMMC Level 2/3
- DFARS 252.204-7012
- ITAR / EAR Export Control
- NASA / DoD contract security clauses
You will partner with IT, engineering, program management, legal, and contracts teams to translate regulatory requirements into practical, auditable controls that enable mission delivery - not slow it down.
If you enjoy building order from complexity, preparing organizations for audits, and designing security programs that scale, you'll thrive here., Governance & Compliance Program
-
Own and maintain the organization's cybersecurity compliance framework
-
Map controls to:
-
NIST 800-171
-
CMMC practices
-
DFARS clauses
-
ITAR/EAR requirements
Develop and maintain:
- System Security Plans (SSPs)
- POA&Ms
- Policies, standards, procedures
- Control evidence repositories
Establish continuous monitoring processes
Audit & Assessment Readiness
-
Lead preparation for:
-
CMMC assessments (C3PAO)
-
DCMA/DoD/NASA audits
-
Prime contractor reviews
Coordinate evidence collection and artifact management
Track remediation plans and closure metrics
Conduct internal mock audits and gap assessments
Serve as primary liaison for assessors and government representatives
Risk Management
- Conduct enterprise and system-level risk assessments
- Maintain risk register and mitigation plans
- Perform impact analysis for new technologies and programs
- Evaluate supplier and subcontractor cybersecurity posture
- Support incident reporting obligations (DFARS 7012 timelines)
Data Protection & Export Control
-
Ensure compliant handling of:
-
CUI
-
ITAR/EAR technical data
-
Sensitive government information
Define data classification and marking standards
Support enclave design and segmentation strategies
Advise teams on compliant collaboration (GCC High/Azure Gov, secure sharing)
Cross-Functional Partnership
-
Work with:
-
IT operations
-
Security/SOC teams
-
Engineering & DevOps
-
Contracts & Legal
-
Program Managers
Integrate security requirements into new systems and proposals
Support contract bids with compliance documentation
Training & Culture
- Deliver CUI/ITAR handling and compliance awareness training
- Coach system owners on control ownership
- Promote "audit ready every day" mindset
- Lead tabletop exercises and readiness drills, Lead technical authority for mission software deployment and integration, ensuring operational readiness and overseeing on-site engineering tasks. Responsibilities include system installation, validation, coordination of updates, and cybersecurity compliance., The Client Integration Specialist II manages client integration processes, ensuring timely setup and support, while maintaining communication and attention to detail throughout the onboarding process.
Requirements
-
High school diploma or equivalent
-
4-8+ years in cybersecurity, IT compliance, or GRC roles
-
Experience supporting a regulated or defense contractor environment
-
Hands-on knowledge of:
-
NIST SP 800-171
-
CMMC
-
DFARS 252.204-7012
-
ITAR/EAR or export controls
Experience creating SSPs and POA&Ms
Experience preparing for audits or formal assessments
Strong documentation and evidence management skills
Excellent communication and cross-functional collaboration
U.S. Person status required (ITAR eligibility)
Ability to obtain a security clearance, * Experience with:
- Microsoft GCC High or Azure Government
- FedRAMP or GovCloud environments
- Supply chain cybersecurity risk management (SCRM)
- Government proposals / contract compliance
- Experience using GRC tools (Archer, ServiceNow GRC, Drata, etc.)
- Background in aerospace, space systems, or DoD programs
- Certifications (nice to have)
- CISM
- CISSP
- CRISC
- CISA
- CMMC RP/CCA/CCI
- Security+
Benefits & conditions
The salary range represents the base salary range for this position. Actual compensation will vary and may be above or below the range based on various factors. Those include but are not limited to location, experience, and performance.
Voyager offers a comprehensive, total compensation package, which includes competitive salary, a discretionary annual bonus plan, paid time off (PTO), a comprehensive health benefit package, retirement savings, wellness program, and various other benefits. When you join our team, you're not just an employee; you become part of a dynamic community dedicated to innovation and excellence.
To conform to U.S. Government space technology export regulations, including the International Traffic in Arms Regulations (ITAR) you must be a U.S. citizen, lawful permanent resident of the U.S., protected individual as defined by 8 U.S.C. 1324b(a)(3), or eligible to obtain the required authorizations from the U.S. Department of State.
Voyager is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law.
Minority/Female/Disabled/Veteran
The statements contained in this job description are intended to describe the general content and requirements for performance of this job. It is not intended to be an exhaustive list of all job duties, responsibilities, and requirements. This job description is not an employment agreement or contract. Management has the exclusive right to alter the scope of work within the framework of this job description at any time without prior notice.
Colorado pay range $130,000-$165,000 USD, In-Office Colorado Springs, CO, USA 137K-185K Annually Expert/Leader 137K-185K Annually Expert/Leader, 60K-108K Annually Senior level 60K-108K Annually Senior level Information Technology Drive sales of Azure solutions at CDW by managing client relationships, executing strategic sales strategies, and achieving revenue growth. Collaborate with internal teams and Microsoft to enhance market presence. Top Skills: Azure ServicesSalesforce
What you need to know about the Colorado Tech Scene
With a business-friendly climate and research universities like CU Boulder and Colorado State, Colorado has made a name for itself as a startup ecosystem. The state boasts a skilled workforce and high quality of life thanks to its affordable housing, vibrant cultural scene and unparalleled opportunities for outdoor recreation. Colorado is also home to the National Renewable Energy Laboratory, helping cement its status as a hub for renewable energy innovation.
Key Facts About Colorado Tech
- Number of Tech Workers: 260,000; 8.5% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Lockheed Martin, Century Link, Comcast, BAE Systems, Level 3
- Key Industries: Software, artificial intelligence, aerospace, e-commerce, fintech, healthtech
- Funding Landscape: $4.9 billion in VC funding in 2024 (Pitchbook)
- Notable Investors: Access Venture Partners, Ridgeline Ventures, Techstars, Blackhorn Ventures
- Research Centers and Universities: Colorado School of Mines, University of Colorado Boulder, University of Denver, Colorado State University, Mesa Laboratory, Space Science Institute, National Center for Atmospheric Research, National Renewable Energy Laboratory, Gottlieb Institute
