CMMC Certified Assessor (CCA)
New
Based in United StatesFull-TimeSenior
SalaryCompetitive salary and benefits package.
Apply NowOpens the employer's application page
Job Details
- Experience
- 5+ years
- Required Skills
- CybersecurityRisk Management
Requirements
- Active CMMC Certified Assessor (CCA) credential issued by The Cyber AB.
- 5+ years of professional experience in cybersecurity, compliance, audit, or related security disciplines.
- Deep understanding of CMMC 2.0, NIST SP 800-171/172, and DFARS 252.204-7012/7019/7020 requirements.
- Proven experience conducting security assessments, compliance reviews, and cybersecurity gap analyses.
- Strong understanding of security controls, risk management, and documentation requirements.
- Excellent written and verbal communication skills.
- Ability to manage multiple client assessments, priorities, and deadlines independently.
- Strong organizational skills and attention to detail.
- Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, or a related field preferred.
- Additional certifications such as CISSP, CISM, CISA, CAP, or Security+ are a plus.
- Experience working with a Certified Third-Party Assessment Organization (C3PAO) is preferred.
- Familiarity with government cloud environments such as Microsoft GCC High or AWS GovCloud is beneficial.
Responsibilities
- Lead and participate in official CMMC assessments and readiness reviews for Level 1 and Level 2 certification requirements.
- Perform cybersecurity gap analyses against CMMC 2.0, NIST SP 800-171/172, DFARS requirements, and other applicable security frameworks.
- Review, validate, and document compliance evidence, including System Security Plans (SSPs), Plans of Action and Milestones (POA&Ms), policies, and technical artifacts.
- Conduct stakeholder interviews and evaluate security control implementation to determine compliance status.
- Develop detailed assessment reports outlining findings, risks, and remediation recommendations.
- Partner with client IT, security, risk, and compliance teams to support remediation strategies and certification preparation.
- Communicate assessment outcomes effectively to both technical teams and executive leadership.
- Maintain up-to-date knowledge of evolving DoD cybersecurity requirements, CMMC program changes, and industry standards.
- Contribute to improving assessment methodologies, templates, and internal best practices.
- Mentor junior team members and support knowledge sharing across assessment teams.
View Full Description & ApplyYou'll be redirected to the employer's site