RemoteLeaf Logo
Log in Sign up

CMMC Assessor

2 hours, 37 minutes ago
United States
Full-time
Mid Level
Penetration Tester
Cybersecurity
Cybersecurity
Apply Now
Ascera

Ascera

Ascera provides next-gen cyber compliance software that automates evidence collection and status reporting in CMMC, DFARS, and NIST-based compliance. The software cuts time and effort in half by boosting productivity through automated data collection a...

Internet Software & Services
View All Jobs 3

Description

  • Conduct formal CMMC assessments of organizations’ cybersecurity practices using the CMMC assessment process (CAP).
  • Collaborate with client organizations to plan assessments, develop assessment schedules, and confirm readiness.
  • Evaluate the effectiveness of security measures and determine alignment with the required CMMC practices and processes.
  • Interview key personnel to understand how cybersecurity practices are implemented and maintained.
  • Collect and assess evidence such as system logs, incident reports, and audit trails to verify implementation.
  • Maintain an objective, unbiased stance and base assessment conclusions on facts and evidence.
  • Prepare assessment documentation for submission to eMASS when organizations are seeking certification.
  • Contribute to the development of CRC (Cyber Risk & Compliance) delivery processes and methodologies.
  • Support client advisory services tied to broader compliance objectives.
  • Lead with a customer-first mindset and model 112Cyber’s core values.

Requirements

  • CMMC Certified Assessor (CCA) or Lead CMMC Certified Assessor (LCCA).
  • CISSP, CISM, CISA, CRISC, or another related certification.
  • Minimum 2 years of experience testing and documenting IT security controls, including managing and facilitating external IT audits.
  • Minimum 2 years of experience leading external or internal audits such as CMMC, FedRAMP, ISO 27001, or PCI.
  • Minimum 2 years of experience in cybersecurity.
  • Self-driven with a strong desire to succeed.
  • Ability to engage with customers and executives and build positive relationships.
  • Exceptional communication skills with the ability to explain complex technical concepts to non-technical audiences.

Benefits

  • Competitive salary.
  • Quarterly bonus plan.
  • Comprehensive medical, dental, and vision plans.
  • 401(k) with company match.
  • 30 days of annual paid time off.
  • Significant training, development, and certification attainment support.
  • Opportunity for long-term career advancement.
  • The chance to join a growing company where contributions are recognized.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Infosys

Third Party Risk Management (TPRM) Consultant - Principal

Infosys 100K+ Internet Software & Services

Infosys Consulting is seeking a Principal Third Party Risk Management Consultant to lead enterprise third-party risk, GRC, and vendor assurance programs for clients across multiple industries.

Poland Full-time Lead Penetration Tester Program Manager
37 minutes ago
Ethena

Head of Security

Ethena 1-10 Diversified Financial Services

Ethena Labs is seeking a globally remote Head of Security to lead and own the company’s end-to-end security strategy across its crypto and stablecoin products, infrastructure, and operations.

Anywhere Executive Penetration Tester Security Engineer
AWS Cybersecurity Kubernetes Penetration Testing SIEM
1 hour, 7 minutes ago
Quistor

Managed Operational Security Consultant

Quistor 51-250 Internet Software & Services

Broadpin is hiring a Medior Managed Operational Security Consultant to help secure customer business-critical IT systems by managing vulnerabilities, patching, and security automation across international client environments.

United Kingdom Belgium Czech Republic Netherlands Spain Full-time Mid Level Penetration Tester
Ansible Linux
1 hour, 22 minutes ago
Infosys

Governance, Risk, and Compliance (GRC) SME - Senior Consultant

Infosys 100K+ Internet Software & Services

Infosys Consulting is seeking a Cyber GRC Senior Consultant to help clients strengthen cybersecurity governance, manage cyber risk, and maintain regulatory compliance across global engagements.

Poland Full-time Senior Penetration Tester
Cybersecurity Machine Learning
1 hour, 52 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers