This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for a CMMC Certified Assessor (CCA) based in United States.
This role offers the opportunity to help organizations in the Defense Industrial Base strengthen their cybersecurity posture and achieve critical compliance milestones.
You will lead assessments focused on protecting sensitive information and supporting organizations navigating complex government security requirements.
As a certified assessor, you will evaluate security practices, identify risks, and provide actionable guidance to help clients achieve CMMC readiness and certification.
You will work with technical teams, compliance leaders, and executives while contributing to a growing cybersecurity and audit organization.
This position combines technical expertise, regulatory knowledge, and client engagement to create meaningful impact in national security-focused environments.
You will play a key role in advancing secure practices across organizations handling Federal Contract Information and Controlled Unclassified Information.
This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for a CMMC Certified Assessor (CCA) based in United States.
This role offers the opportunity to help organizations in the Defense Industrial Base strengthen their cybersecurity posture and achieve critical compliance milestones.
You will lead assessments focused on protecting sensitive information and supporting organizations navigating complex government security requirements.
As a certified assessor, you will evaluate security practices, identify risks, and provide actionable guidance to help clients achieve CMMC readiness and certification.
You will work with technical teams, compliance leaders, and executives while contributing to a growing cybersecurity and audit organization.
This position combines technical expertise, regulatory knowledge, and client engagement to create meaningful impact in national security-focused environments.
You will play a key role in advancing secure practices across organizations handling Federal Contract Information and Controlled Unclassified Information.
Accountabilities:
- Lead and participate in official CMMC assessments and readiness reviews for Level 1 and Level 2 certification requirements.
- Perform cybersecurity gap analyses against CMMC 2.0, NIST SP 800-171/172, DFARS requirements, and other applicable security frameworks.
- Review, validate, and document compliance evidence, including System Security Plans (SSPs), Plans of Action and Milestones (POA&Ms), policies, and technical artifacts.
- Conduct stakeholder interviews and evaluate security control implementation to determine compliance status.
- Develop detailed assessment reports outlining findings, risks, and remediation recommendations.
- Partner with client IT, security, risk, and compliance teams to support remediation strategies and certification preparation.
- Communicate assessment outcomes effectively to both technical teams and executive leadership.
- Maintain up-to-date knowledge of evolving DoD cybersecurity requirements, CMMC program changes, and industry standards.
- Contribute to improving assessment methodologies, templates, and internal best practices.
- Mentor junior team members and support knowledge sharing across assessment teams.
- Active CMMC Certified Assessor (CCA) credential issued by The Cyber AB.
- Candidates with CCP certification who are actively progressing toward CCA may be considered for select opportunities.
- U.S. citizenship required for DoD-related engagements.
- 5+ years of professional experience in cybersecurity, compliance, audit, or related security disciplines.
- Deep understanding of CMMC 2.0, NIST SP 800-171/172, and DFARS 252.204-7012/7019/7020 requirements.
- Proven experience conducting security assessments, compliance reviews, and cybersecurity gap analyses.
- Strong understanding of security controls, risk management, and documentation requirements.
- Excellent written and verbal communication skills with the ability to present findings clearly.
- Ability to manage multiple client assessments, priorities, and deadlines independently.
- Strong organizational skills and attention to detail.
- Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, or a related field preferred, or equivalent professional experience.
- Additional certifications such as CISSP, CISM, CISA, CAP, or Security+ are a plus.
- Experience working with a Certified Third-Party Assessment Organization (C3PAO) is preferred.
- Familiarity with government cloud environments such as Microsoft GCC High or AWS GovCloud is beneficial.
- Active or previous DoD security clearance (Tier 3 or above) is a plus.
- Fully remote work environment.
- Competitive salary and benefits package.
- Performance-based bonuses.
- Flexible paid time off and paid holidays.
- Opportunities for professional growth and career development.
- Opportunity to work on high-impact cybersecurity and compliance initiatives.
- Collaborative and innovative work environment.
- Chance to contribute to improving cybersecurity practices across critical industries.
The CMMC Certified Assessor will lead and support cybersecurity compliance assessments for organizations seeking alignment with CMMC 2.0 and related defense security requirements. This role requires strong assessment skills, attention to detail, and the ability to translate technical findings into clear recommendations for diverse stakeholders.
Requirements:
The ideal candidate is a cybersecurity professional with hands-on experience performing compliance assessments in regulated or defense-related environments. They should possess strong knowledge of CMMC requirements, excellent analytical abilities, and the ability to manage client engagements independently.