Jobs · Management

CMMC Certified Assessor (CCA)

Jobgether · United States · 2 days ago
RemoteRemoteManagementFull-time

About the role

This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for a CMMC Certified Assessor (CCA) based in the United States. This role offers the opportunity to help organizations in the Defense Industrial Base strengthen their cybersecurity posture and achieve critical compliance milestones. You will lead assessments focused on protecting sensitive information and supporting organizations navigating complex government security requirements.

Responsibilities

  • Lead and support cybersecurity compliance assessments for organizations seeking alignment with CMMC 2.0 and related defense security requirements.
  • Perform cybersecurity gap analyses against CMMC 2.0, NIST SP 800-171/172, DFARS requirements, and other applicable security frameworks.
  • Review, validate, and document compliance evidence, including System Security Plans (SSPs), Plans of Action and Milestones (POA&Ms), policies, and technical artifacts.
  • Conduct stakeholder interviews and evaluate security control implementation to determine compliance status.
  • Develop detailed assessment reports outlining findings, risks, and remediation recommendations.
  • Partner with client IT, security, risk, and compliance teams to support remediation strategies and certification preparation.
  • Communicate assessment outcomes effectively to both technical teams and executive leadership.
  • Maintain up-to-date knowledge of evolving DoD cybersecurity requirements, CMMC program changes, and industry standards.
  • Contribute to improving assessment methodologies, templates, and internal best practices.
  • Mentor junior team members and support knowledge sharing across assessment teams.

Requirements

  • The ideal candidate is a cybersecurity professional with hands-on experience performing compliance assessments in regulated or defense-related environments.
  • They should possess strong knowledge of CMMC requirements, excellent analytical abilities, and the ability to manage client engagements independently.
  • An Active CMMC Certified Assessor (CCA) credential issued by The Cyber AB is required, or candidates with CCP certification who are actively progressing toward CCA may be considered for select opportunities.
  • A U.S. citizenship is required for DoD-related engagements.
  • 5+ years of professional experience in cybersecurity, compliance, audit, or related security disciplines.
  • Proven experience conducting security assessments, compliance reviews, and cybersecurity gap analyses.
  • A strong understanding of security controls, risk management, and documentation requirements.
  • Excellent written and verbal communication skills with the ability to present findings clearly.
  • Ability to manage multiple client assessments, priorities, and deadlines independently.
  • Strong organizational skills and attention to detail.
  • A Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, or a related field is preferred, or equivalent professional experience.
  • Additional certifications such as CISSP, CISM, CISA, CAP, or Security+ are a plus.
  • Experience working with a Certified Third-Party Assessment Organization (C3PAO) is preferred.
  • Familiarity with government cloud environments such as Microsoft GCC High or AWS GovCloud is beneficial.
  • An Active or previous DoD security clearance (Tier 3 or above) is a plus.

Benefits

  • Full-time remote work environment.
  • Competitive salary and benefits package.
  • Performance-based bonuses.
  • Flexible paid time off and paid holidays.
  • Opportunities for professional growth and career development.
  • Opportunity to work on high-impact cybersecurity and compliance initiatives.
  • Collaborative and innovative work environment.
  • Chance to contribute to improving cybersecurity practices across critical industries.

Similar jobs