Certified CMMC Assessor (CCA)
McLean, VA (Hybrid) · Contract
Be the first to apply
- Experience
- 4+ yrs
- Salary
- USD 35 – USD 50 / hour
- Openings
- 1
- Posted
- 1 week ago
- Work mode
- Hybrid
- Education
- Bachelor's degree in cybersecurity, information technology, information systems, or a related field
- Eligibility
- U.S. citizens with an active CCA certification, the ability to clear and maintain the required Tier 3 background investigation, and a bachelor's degree or equivalent experience may apply. Candidates must also be able to travel to client sites when needed.
- Resume
- Required to apply
Where you'll work
Job description
Role overview
OCT Consulting LLC is looking for a Certified CMMC Assessor (CCA) to support the expansion of its CMMC Certified Third-Party Assessment Organization (C3PAO) practice. The selected professional will participate in CMMC Level 2 certification assessments as part of an assessment team, working under the guidance of the Lead Certified CMMC Assessor.
What you will do
- Take part in CMMC Level 2 certification assessments as a team member under the direction of the Lead Assessor (LCCA).
- Review documentation and evidence, conduct personnel interviews, and test security controls against the 110 requirements in NIST SP 800-171 Rev. 2 using NIST SP 800-171A assessment methods.
- Record assessment results and support MET / NOT MET / NOT APPLICABLE decisions for assigned requirements, backed by evidence.
- Help prepare the assessment plan, confirm the scope, and support readiness reviews before the assessment begins.
- Assist in preparing the assessment report and help with POA&M closure activities within required timelines.
- Keep assessment evidence and working papers organized and maintained in line with C3PAO procedures and ISO/IEC 17020:2012.
- Follow the Cyber AB Code of Professional Conduct, including conflict-of-interest, ethics, and impartiality obligations at all times.
Requirements
- U.S. citizenship is required because all personnel involved in the CMMC Level 2 certification process must undergo a Tier 3 background investigation leading to a national security eligibility determination.
- An active Certified CMMC Assessor (CCA) credential in good standing is required.
- Ability to obtain and keep a favorable Tier 3 background investigation result, including credit, fingerprint, and law-enforcement checks. This is not a security clearance and is not for government employment.
- A bachelor's degree in cybersecurity, information technology, information systems, or a related discipline, or an equivalent mix of education and experience.
- Generally 4 or more years of experience in cybersecurity or information assurance, with exposure to NIST SP 800-171 and/or CMMC.
- Working understanding of NIST SP 800-171 Rev. 2, NIST SP 800-171A, 32 CFR Part 170, and DFARS 252.204-7012.
- Additional credentials such as CompTIA Security+, CISSP, CISA, or CCP are preferred.
- Strong skills in documentation, analysis, and communication.
- Remote work is eligible, but travel to client locations for on-site assessment work must be possible when needed.
Compensation and work arrangement
The pay range is $35 to $50 per hour, depending on experience, education, and other relevant factors. This opportunity may be offered as either part-time or full-time.
About the employer
OCT Consulting LLC is a small business that delivers professional services and information technology solutions to federal government and commercial clients. Established in 2013, the firm combines operational flexibility with a leadership team experienced in delivering successful engagements for major federal agencies.
The organization emphasizes a workplace where employees can grow through their skills, contributions, and achievements, with a focus on merit-based career development and professional advancement.