IT Compliance Engineer Sr

JOB DESCRIPTION

As a 100% employee-owned contractor, when you work at Sundt, you're not just hiring on at a company, you're joining a culture.

Because everyone at Sundt is part owner, you'll join a team of people who are deeply invested in their work.

From apprentices to managers, we're passionate about the details and deliberate in everything we do.

At Sundt we focus on building long-term prosperity for our clients, communities, and employee-owners.

We offer competitive pay, industry-leading benefits including a 401k and employee stock ownership plan, incentive programs for craft and administrative employees as well as training that focuses on your personal and professional growth.

We're driven by skill, grit and purpose.

Join us as we strive to be the most skilled builder in America.

Job Summary

Sundt Construction is seeking a Senior Information Security Compliance Engineer to lead enterprise-wide compliance initiatives across a complex cybersecurity ecosystem.

This position serves as the subject matter expert for CMMC Level 2, NIST 800-171, and other security frameworks, providing strategic guidance and ensuring proactive risk management and audit readiness.

Hybrid position based in Tempe, AZ.

Some travel may be required for audits, training, or conferences.

Key Responsibilities

1.

Define and enforce security baselines across cloud, endpoint, and identity platforms.
2.

Drive improvements in 1AM, RBAC, privileged access, and vulnerability response.
3.

Lead internal/external audits and manage cross-functional compliance initiatives.
4.

Mentor junior compliance team members and promote security culture.
5.

Own remediation plans and track progress to closure.
6.

Serve as SME for CMMC Level 2, NIST, HIPAA, and ISO 27001 compliance.

Minimum Job Requirements

1.

6+ years of cybersecurity or information security compliance experience.
2.

Advanced certifications: CISA, CISM, CRISC, or CCAK preferred.
3.

Deep expertise with security tools, frameworks, and control implementation.
4.

Excellent project management, communication, and stakeholder engagement skills.
5.

Experience in regulated industries (defense, construction, critical infrastructure) preferred.
6.

Familiarity with automation of compliance reporting and GRC platforms preferred.
7.

Proven leadership in managing compliance programs and external audits.

Note: Job Description is subject to change at any time and may include other duties as assigned.

Physical Requirements

1.

May stoop, kneel, or bend, on an occasional basis
2.

Must be able to comply with all safety standards and procedures
3.

Required to use hands to grasp, lift, handle, carry or feel objects on a frequent basis
4.

Will interact with people and technology frequently during a shift/work day
5.

Will lift, push or pull objects up to 50Ibs on an occasional basis.
6.

Will sit, stand or walk short distances for up to the entire duration of a shift/work day.
7.

Will use telephone, computer system, email, and other electronic...