RemoteLeaf Logo
Log in Sign up

Senior CMMC Consultant, Public Sector Advisory

1 day, 22 hours ago
United States
Full-time
Senior
Penetration Tester
Cybersecurity
AWS Azure Cybersecurity GCP
Apply Now
Coalfire

Coalfire

Coalfire is a cybersecurity advisor that helps organizations avert threats, reduce risk, and turn security into a competitive advantage, fueling their success.

Internet Software & Services
251-1K
Founded 2001
$9M raised
View All Jobs 14

Description

  • Lead CMMC advisory consulting engagements, including gap analyses, scoping workshops, and related consulting projects.
  • Provide IT security consultation for cloud-based and on-premises environments in alignment with CMMC, NIST, DFARS, OMB, and other guidance.
  • Develop, review, update, and maintain System Security Plans and supporting security documentation.
  • Prepare, review, and edit advisory reports and other client deliverables.
  • Manage project priorities, tasks, and hours with project managers to meet delivery utilization and timeline targets.
  • Provide quality control and peer review of work produced by other delivery staff.
  • Identify security problems and develop technical solutions to address client challenges.
  • Mentor team members in audit preparation, assessment, technical review, and writing.
  • Maintain ongoing communication with clients and stakeholders throughout the engagement.
  • Escalate client and project issues promptly to management when needed.

Requirements

  • 3+ years of experience in government compliance, including CMMC, FISMA, FedRAMP, and DoD RMF.
  • Strong knowledge of NIST Special Publications 800-171, 800-30, 800-37, and 800-53.
  • Experience with the full Risk Management Framework (RMF) lifecycle, including C&A / A&A packages and achieving and maintaining ATO.
  • Experience with virtualization or cloud technologies.
  • Experience with container-based architectures.
  • Experience with client-server and traditional on-premises architectures.
  • Strong knowledge of information security-related solutions, tools, and utilities.
  • Bachelor's degree in IT, business, or a related field, or equivalent combination of education and work experience.
  • CMMC certification such as CCP, CCA, or Lead CCA.
  • Preferred technical cloud certification such as AWS, Google, or Azure, or security certifications such as CISSP, CISA, or CISM.

Benefits

  • Competitive compensation of $86,000 to $148,000 per year.
  • Eligibility for annual incentive, commission, and/or recognition programs.
  • Flexible work model with the ability to work from home or an office.
  • Paid parental leave.
  • Flexible time off.
  • Certification and training reimbursement.
  • Digital mental health and wellbeing support membership.
  • Comprehensive insurance options.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

GuidePoint Security

Managing Security Consultant - PAM (Remote)

GuidePoint Security 251-1K Internet Software & Services

GuidePoint Security is hiring a remote Managing Security Consultant - PAM to lead CyberArk privileged access management implementations, customer engagement, and ongoing optimization for enterprise clients.

United States Full-time Lead Penetration Tester Program Manager
Active Directory Bash HashiCorp Vault Linux PowerShell Python SIEM Unix
6 hours, 17 minutes ago
Grafana

Senior Risk Management Engineer

Grafana 1K-5K IT Services

Grafana Labs is hiring a Senior Risk Management Engineer to strengthen its enterprise risk management program across a fast-scaling, remote-first cloud platform.

United Kingdom Full-time Senior Penetration Tester
$104k-$125k
6 hours, 39 minutes ago
Grafana

Senior Risk Management Engineer

Grafana 1K-5K IT Services

Grafana Labs is hiring a Senior Risk Management Engineer to mature its enterprise risk program across a fast-scaling, remote-first observability platform.

Germany Full-time Senior Penetration Tester
$92k-$111k
16 hours, 26 minutes ago
Managed Service

Cybersecurity GRC Consultant

Managed Service 11-50 Internet Software & Services

Managed.sa is hiring a Cybersecurity GRC Consultant in Jordan to support clients with governance, risk, and compliance engagements focused on cybersecurity controls and regulatory alignment.

Jordan Full-time Mid Level Penetration Tester
Cybersecurity
20 hours, 17 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers