Virtual Chief Information Security Officer (vCISO)

Are you looking for limitless career opportunities with a company that values growth, innovation, and teamwork? At Ntiva, we’re more than a Managed Services Provider, we’re a community dedicated to helping each other, our clients, and their businesses thrive both personally and professionally. Ntiva is a culture of people who are passionate about the work…and each other.


Our clients view us as an essential part of their teams, relying on us for strategic guidance, fast solutions to complex challenges, and proactive support. With strategic locations across the U.S. and leadership from our founder, Steven Freidkin, we’re on the front lines of a fast-paced industry, facing cybersecurity threats and rapid technology changes together.


If you thrive in a dynamic, supportive environment and enjoy going above and beyond, we’d love to meet you. Come explore one of our many opportunities and grow with us!


How you’ll make an Impact


As vCISO, you will provide strategic and operational cybersecurity and compliance guidance and serve as a trusted security advisor to Ntiva’s GovCon clients. You will be responsible for leading CMMC Level 2 and broader compliance strategies for both prospective and existing clients, supporting new business pursuits while strengthening and expanding current relationships. The vCISO works closely with Sales, Account Management, Engineering, and Delivery teams to align compliance initiatives with client business objectives and regulatory requirements. In this role, you will shape Ntiva’s go-to-market approach for compliance services, contribute to the standardization and maturity of the GovCon service stack, and ensure a consistent, scalable, and high-quality client experience across delivery, compliance, and advisory services.


Location and Work Expectations

• This is a remote position; however, team members should be willing and able to travel if the need arises, though such travel is expected to be infrequent. Candidates with proximity to one of our Centers of Excellence are preferred (Lombard, IL; McLean, VA; Shreveport, LA; Overland Park, KS) .

What you will be doing

• This role demands the capability to guide a client through every step of the CMMC Level 2 certification process. It's important that you can assist clients in creating comprehensive policies and ensure those policies are accurately mapped to verified controls. Additionally, experience in developing and implementing GRC tools is essential for success in this position.
• Provide direct support to Sales and Account Management teams during CMMC and broader compliance discussions with prospective and existing clients, including but not limited to client calls, strategy sessions, and proposal development.
• Serve as a subject-matter expert to help shared services teams navigate evolving compliance requirements and client expectations.
• Contribute to the development and refinement of Ntiva’s compliance go-to-market strategy, ensuring alignment across sales, delivery, and marketing.
• Drive the standardization, documentation, and refinement of the GovCon service stack to ensure a unified and scalable delivery model.
• Help ensure Ntiva’s compliance offerings remain competitive, scalable, and aligned with industry standards.
• Conduct monthly security log reviews and oversee timely remediation activities to maintain CMMC Compliance.
• Document and upload remediation results into the GRC platform.
• Escalate critical security and compliance risks to GovCon leadership with clear impact and recommended actions.
• Validate that all remediation efforts align with applicable regulatory and contractual requirements.

You’ll be successful in this role if you have experience in/with:

• 3–4+ years of IT compliance experience with a strong security focus.
• Two full-cycle CMMC Level 2 audit completions with direct, hands-on execution from gap assessment through remediation validation and final documentation (not solely oversight or advisory).
• Demonstrated full audit lifecycle experience, including control testing, evidence collection, POA&M management, remediation tracking, and audit documentation.
• Background in IT consulting, managed services (MSP), cybersecurity, or compliance advisory services.
• Strong knowledge of managed services delivery models and cybersecurity tooling that enable scalable compliance.
• Practical understanding of core security technologies, including firewalls and infrastructure controls that support compliance frameworks.
• Deep working knowledge of CMMC (Levels 1–2) and NIST 800-171.
• Experience accurately tracking and documenting billable time in accordance with client-facing consulting or managed services environments.
• Experience supporting GovCon clients and navigating federal regulatory requirements.
• Strong documentation and communication skills for both technical and executive audiences.

Bonus Points for

• Experience participating in or preparing clients for C3PAO assessments.
• CMMC Registered Practitioner (RP) or RPA designation.
• Experience supporting sales cycles, including proposal development and compliance-focused client discussions.
• Experience contributing to go-to-market strategy, service standardization, and cross-functional enablement across Sales, Account Management, Engineering, and Delivery teams.
• Ability to develop repeatable messaging, playbooks, and training materials for compliance programs.

Required language skills

• Ability to communicate professionally, in English, both written and orally
• Ability to write business correspondence and process procedures
• Ability to effectively present information and respond to questions from groups of managers, clients, and the general public

Benefits and Perks

• Medical, Dental and Vision coverage for employee and family
• 401k + company-matched contributions 4% match on 5% contribution - no vesting period! (Employee and Company contribute after 90 days)
• Group Term Life and Accidental Death and Dismemberment coverage (company provided)
• Short-Term (voluntary enrollment) and Long-Term Disability coverage (company provided)
• Health Savings Account (HSA) Options / PPO Options
• Employee Assistance Program
• Paid Time Off (PTO) + Volunteer Time Off (VTO) + 8 Paid Holidays + 3 Floating Holidays
• Education Reimbursement Program
• Generous Employee Referral Program - cash bonus for successful referrals!
• Dynamic Recognition and Rewards
• Clear Promotion and Advancement Tracks
• Work with Industry-Leading Talent

The base pay range for this position is expected to be between $100,000 and $150,000 per year. The base pay offered may vary depending on multiple non-discriminatory factors including, but not limited to, market location, job-related knowledge, skills, and experience. The total compensation package for this position also includes medical benefits, 401(k) eligibility, and PTO. Additional details of participation in these benefit plans will be provided if an employee receives an offer of employment.


FLSA Status: Salaried/Exempt


Work Authorization Criteria
Standard: We welcome applicants who are U.S. persons. At this time, we are unable to offer sponsorship or assume sponsorship of an employment visa.


This position requires U.S. citizenship due to federal government contract obligations and access to secured information systems.


Workspace Requirements and Remote Work Policy
Team members must establish a dedicated safe workspace that is free from distractions, hazards, and that is secure from unauthorized access. This includes following Ntiva’s IT User and Security Policies that include but are not limited to password-protecting all equipment, keeping confidential and proprietary documents secure, refraining from using public Wi-Fi, having adequate arrangements in place to avoid significant interruptions from caregiving responsibilities during work hours (except in emergency situations with manager approval). Any remote work away from a team member’s normal expected dedicated safe workspace must be requested by team member, is subject to review by management, and must adhere to Ntiva policies and procedures.


Our Commitment to a Diverse Workforce
At Ntiva, we are committed to creating and maintaining a diverse, inclusive, and welcoming work environment for all employees and job applicants. We firmly believe that a diverse workforce fosters a wider range of perspectives, experiences, and ideas that lead to increased creativity, innovation, and problem-solving capabilities. As an equal opportunity employer, we actively seek to recruit and retain a diverse workforce that reflects the communities we serve. We prohibit discrimination of any kind, including but not limited to race, color, religion, gender, gender identity or expression, sexual orientation, marital status, national origin, age, hair length, protective hairstyles, organ donor status, disability, veteran status, or any other legally protected status and comply with all applicable laws governing nondiscrimination in employment.


Application Deadline: The sooner you apply, the sooner we can get to know you! Submit your resume today! Applications will be accepted until 6/05/2026.

Equal Opportunity Employer


This employer is required to notify all applicants of their rights pursuant to federal employment laws.
For further information, please review the Know Your Rights notice from the Department of Labor.