CMMC Certified Assessor (CCA)

New
Based in United StatesFull-TimeSenior
SalaryCompetitive salary and benefits package.
Apply NowOpens the employer's application page

Job Details

Experience
5+ years
Required Skills
CybersecurityRisk Management

Requirements

  • Active CMMC Certified Assessor (CCA) credential issued by The Cyber AB.
  • 5+ years of professional experience in cybersecurity, compliance, audit, or related security disciplines.
  • Deep understanding of CMMC 2.0, NIST SP 800-171/172, and DFARS 252.204-7012/7019/7020 requirements.
  • Proven experience conducting security assessments, compliance reviews, and cybersecurity gap analyses.
  • Strong understanding of security controls, risk management, and documentation requirements.
  • Excellent written and verbal communication skills.
  • Ability to manage multiple client assessments, priorities, and deadlines independently.
  • Strong organizational skills and attention to detail.
  • Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, or a related field preferred.
  • Additional certifications such as CISSP, CISM, CISA, CAP, or Security+ are a plus.
  • Experience working with a Certified Third-Party Assessment Organization (C3PAO) is preferred.
  • Familiarity with government cloud environments such as Microsoft GCC High or AWS GovCloud is beneficial.

Responsibilities

  • Lead and participate in official CMMC assessments and readiness reviews for Level 1 and Level 2 certification requirements.
  • Perform cybersecurity gap analyses against CMMC 2.0, NIST SP 800-171/172, DFARS requirements, and other applicable security frameworks.
  • Review, validate, and document compliance evidence, including System Security Plans (SSPs), Plans of Action and Milestones (POA&Ms), policies, and technical artifacts.
  • Conduct stakeholder interviews and evaluate security control implementation to determine compliance status.
  • Develop detailed assessment reports outlining findings, risks, and remediation recommendations.
  • Partner with client IT, security, risk, and compliance teams to support remediation strategies and certification preparation.
  • Communicate assessment outcomes effectively to both technical teams and executive leadership.
  • Maintain up-to-date knowledge of evolving DoD cybersecurity requirements, CMMC program changes, and industry standards.
  • Contribute to improving assessment methodologies, templates, and internal best practices.
  • Mentor junior team members and support knowledge sharing across assessment teams.
View Full Description & ApplyYou'll be redirected to the employer's site
Competitive salary and benefits package.
Apply Now