Who We Are: LINK is a fast-growing Woman Owned Small Business (WOSB) that leverages human-centered design to support strategy, innovation, communication, change, and branding within the federal government and adjacent industry partners. At LINK, we partner with engineers, futurists, and thought leaders to untangle complexity, discover opportunity, and communicate clearly with visual stories. 

Let us be your partners in change.

About the Opportunity:

The IT & Compliance Manager is a hands-on leadership role responsible for managing the company’s day-to-day IT operations, cybersecurity program, and regulatory compliance posture. This role is the company’s primary internal owner of IT governance and federal compliance, with a core focus on leading and sustaining Cybersecurity Maturity Model Certification (CMMC) Level 2 certification.

Operating within a Google Workspace and macOS environment, this role directs an external managed service provider (MSP) responsible for help desk support and device management, while serving as the internal authority on all IT and compliance decisions. The IT & Compliance Manager will build repeatable processes and a maturing IT infrastructure that supports the company’s continued growth as a government contractor.

Reporting directly to the COO, this role will regularly interface with executive leadership (internal and external), serving as a trusted advisor on cybersecurity, compliance, and risk. This individual must be comfortable representing the company in client-facing and audit-related discussions, including supporting business development efforts and articulating the organization’s compliance posture.

While overseeing day-to-day IT operations through a managed service provider (MSP), success in this role is defined by the ability to drive compliance maturity, influence leadership decisions, and position the company as a trusted and compliant federal contractor.

Qualifications:

• Bachelor’s degree in Information Technology, Cybersecurity, Computer Science, or a related field (or equivalent experience)
• 5–8+ years of progressive experience in IT, cybersecurity, or compliance roles
  
  • 2+ years in a government contracting or federal consulting environment preferred
• Direct, hands-on experience leading or supporting CMMC Level 2 readiness and/or certification efforts (strongly preferred / prioritized)
• Demonstrated expertise with NIST SP 800-171 controls and implementing compliance programs in a business environment
• Proven experience developing, maintaining, and auditing SSPs, POA&Ms, and security policies in support of CMMC or similar frameworks
• Experience working directly with executive leadership, including the ability to communicate risk, tradeoffs, and compliance posture clearly
• Ability to participate in external-facing conversations (e.g., auditors, clients, partners) and represent the company’s cybersecurity capabilities
• Experience managing or overseeing a managed service provider (MSP) relationship
• Hands-on experience with macOS environments and endpoint management (e.g., Apple Business Manager, MDM platforms) preferred
• Experience with Google Workspace administration and security configuration is a plus
• Strong ability to build, document, and scale processes in a growing organization

Responsibilities: 

CMMC & Regulatory Compliance

• Serve as the primary internal owner and subject matter expert for CMMC Level 2 certification, leading all aspects of third-party assessment (C3PAO) readiness and execution
• Develop, maintain, and continuously improve the System Security Plan (SSP), Plan of Action & Milestones (POA&M), and all supporting CMMC documentation
• Ensure ongoing alignment with NIST SP 800-171 controls and CMMC Level 2 practices across all in-scope systems and processes
• Lead internal gap assessments, remediation planning, and evidence collection in preparation for audits
• Monitor and interpret evolving federal cybersecurity requirements, including DFARS, FAR, and CUI handling standards
• Own CUI policies, procedures, and employee training to ensure proper handling and compliance
• Provide regular updates to executive leadership on compliance status, risks, and required actions

Managed Service Provider (MSP) Oversight

• Oversee LINK’s MSP for help desk support, device management, and IT operations, ensuring alignment with security and compliance requirements
• Establish clear expectations, SLAs, and accountability measures for MSP performance
• Ensure MSP-delivered services meet CMMC and internal security standards
• Evaluate MSP effectiveness and provide recommendations on vendor strategy, improvements, or changes
• Serve as the primary internal escalation point and relationship owner for the MSP

Process Development & Operational Maturity

• Assess current-state IT and compliance processes, identifying gaps, risks, and opportunities for standardization
• Build and implement a process maturity roadmap focused on compliance readiness and scalability
• Develop, document, and maintain SOPs for key IT and compliance functions, including device management, access control, and change management
• Implement and enforce a structured IT change management process
• Continuously refine processes based on audit findings, incidents, and organizational growth needs

Cybersecurity & Incident Response

• Implement and manage the company’s cybersecurity program, including threat monitoring, vulnerability management, and endpoint protection
• Develop, test, and maintain Incident Response (IR) and Business Continuity/Disaster Recovery (BC/DR) plans
• Lead security awareness training and phishing simulation programs
• Oversee identity and access management, including MFA and least-privilege principles

Business Operations & Technology Integration

• Partner with operations, program management, and finance to ensure IT and compliance capabilities support contract delivery
• Support business development efforts by contributing to proposals, compliance narratives, and participating in client discussions related to cybersecurity posture
• Provide input to leadership on IT and security budgeting, forecasting, and vendor management
• Identify and implement technology solutions that improve internal operations and scalability
• Oversee onboarding and offboarding processes to ensure secure and efficient user lifecycle management

Work Schedule:

• Full time, 40 hours per week
• Some travel required to attend relevant events and conferences, and participate in LINK team events

Salary: We're committed to offering competitive compensation. While the salary range for this position is $105,000-$130,000, your final offer may be adjusted based on factors like experience and location.

Benefits:

• $100 monthly internet/cell phone stipend
• LINK sponsored healthcare benefits including medical, dental, vision
• Company-paid Short Term Disability Insurance
• 401K with employer contribution of up to 4%
• 11 Federal Holidays per year 
• 15 days of Paid Time Off (PTO) per year 
• Paid Holiday Time Off (Christmas Eve through the New Year) 
• Annual bonus plan participation
• Annual profit sharing participation
• $2,000 Learning and Development program reimbursement
• Technology package that includes a LINK-owned MacBook Pro, monitor, mouse and keyboard

EOE

Who We Are: LINK is a fast-growing Woman Owned Small Business (WOSB) that leverages human-centered design to support strategy, innovation, communication, change, and branding within the federal government and adjacent industry partners. At LINK, we partner with engineers, futurists, and thought leaders to untangle complexity, discover opportunity, and communicate clearly with visual stories. 

Let us be your partners in change.

About the Opportunity:

The Facility Security Officer (FSO) is responsible for establishing, managing, and sustaining the company’s classified security program in full compliance with applicable directives, and guidelines. This role serves as the primary point of contact for all matters related to the Facility Clearance (FCL), personnel security clearances, Common Access Card (CAC) administration, and visitor control. The FSO works directly with program managers and government customers to ensure security requirements are identified in contracts, met throughout performance, and documented to support DCSA reviews and audits.

In this critical role, you’ll ensure compliance with NISPOM (32 CFR Part 117), DoD directives, and Intelligence Community guidelines while managing facility clearances, personnel security, physical safeguards, and classified information. As part of a growing organization, you’ll play a key role in protecting national security and enabling mission success. You’ll also play an integral role across operations and project teams, ensuring a collaborative, secure, and confidently run security program.

Required Qualifications:

• A bachelor’s degree in security management or related field (or equivalent experience).
• 10+ years in industrial security, including 5+ years as an FSO.
• An active Top-Secret clearance with SCI eligibility.
• Strong knowledge of NISPOM, DoD directives, ICD 705.
• Proficiency with DISS, SWFT, NBIS-eApp & NISS.
• Excellent supervisory, organizational and communication skills.
• Ability to travel up to LINK facilities annually.

Preferred Qualifications: 

• Experience in defense contracting: U.S. Government, DoD, Intelligence, or contractor community in security management preferred
• Knowledgeable with UL 2050 standards and Insider Threat Programs.
• Graduate degree in a related field.
• Able to plan and organize work to achieve goals; achieves targeted results with minimal supervision; is accountable for own actions
• Possess excellent verbal & written communications skills; Provides timely, well organized verbal & written information that is audience appropriate; listens attentively to others and retains/processes information.
• Builds alliances, partnerships & collaboration with others across teams and locations
• Develops strategic short & long term plans; arranges priorities, distinguishing urgent, important and unimportant in order to meet goals & deadlines

Responsibilities: 

Security Program Management

• As the FSO you will develop and maintain security operational plans, SOPs, and compliance documentation.
• Ensure adherence to 32 CFR Part 117 NISPOM and contract-specific requirements.
• Conduct audits, self-inspections, and support DCSA reviews.
• Investigate security incidents and recommend corrective actions.

Facility Clearance (FCL) Management

• Serve as the primary liaison with DCSA for all FCL-related actions
• Conduct annual self-inspections, facility audits, and support DCSA Security Vulnerability Assessments.

Personnel Security Clearance Management

• Initiate, manage, and track personnel security clearance investigations from submission through adjudication
• Maintain all personnel security files, briefing records, and reinvestigation timelines.
• Conduct initial security briefings, annual refresher training, pre/post foreign travel briefings
• Identify clearance requirements on all new contracts and task orders
• Coordinate with HR and Program Managers to ensure all staff, subcontractors, and consultants hold appropriate clearances before access is granted.
• Administer the Insider Threat Program (as ITPSO) and report incidents to appropriate government channels.
• Coordinate visit requests and enforce need-to-know principles
• Deliver security training and awareness programs.

Common Access Card (CAC) and Access Management

• Serve as the primary administrator for Common Access Card (CAC) issuance and management across all projects and programs.
• Coordinate with sponsoring government agencies to initiate, renew, and revoke CAC credentials for company personnel.
• Maintain accurate tracking of CAC status for each program/contract and ensure timely renewals.
• Perform access control functions including management of badges, access cards, and facility entry rosters. 
• Coordinate and submit visitor access requests (VARs) for government facilities; enforce need-to-know principles for all access decisions.

Flank Speed & Government Platform Access Management

• Coordinate with program managers to provision, modify, and deactivate accounts in compliance with contract and government requirements.
• Ensure Flank Speed access requests are aligned with personnel clearance levels and program need-to-know determinations.
• Maintain accurate records of platform access and conduct periodic reviews to ensure ongoing compliance.

Contract Review & Clearance Requirements

• Review all new and existing contracts, task orders, and RFPs to identify security requirements including classification levels, clearance needs, and DD 254 obligations.
• Prepare and manage DD 254s for prime and subcontract vehicles.
• Provide security input to business development and proposal teams for new opportunities.

Classified Information Handling

• Control, transmit, store, and destroy classified materials in accordance with applicable regulations.
• Ensure proper classification markings on all documents; provide classification guidance to staff.
• Oversee secure area operations including logging, receipt, and dissemination of classified government-furnished information and equipment.

Work Schedule:

• Full time, 40 hours per week
• Some travel required to attend relevant events and conferences, and participate in LINK team events

Salary: We're committed to offering competitive compensation. While the salary range for this position is $105,000-$130,000, your final offer may be adjusted based on factors like experience and location.

Benefits:

• $100 monthly internet/cell phone stipend
• LINK sponsored healthcare benefits including medical, dental, vision
• Company-paid Short Term Disability Insurance
• 401K with employer contribution of up to 4%
• 11 Federal Holidays per year 
• 15 days of Paid Time Off (PTO) per year 
• Paid Holiday Time Off (Christmas Eve through the New Year) 
• Annual bonus plan participation
• Annual profit sharing participation
• $2,000 Learning and Development program reimbursement
• Technology package that includes a LINK-owned MacBook Pro, monitor, mouse and keyboard

EOE