Join the CyberNINES team as a Certified CMMC Assessor (CCA)
Become an integral part of our growing cybersecurity practice. As a CCA at CyberNINES, you will serve as a subject matter experts during CMMC Level 2 assessments, collaborate with CyberNINES team members, other C3PAO and our clients while contributing to the advancement of secure practices across the Defense Industrial Base (DIB).
.png?width=300&height=300&name=Cybersecurity%20Analysts%20(3).png "Cybersecurity Analysts (3)")
Responsibilities
Certified CMMC Assessors (CCAs) play a critical role in conducting formal CMMC assessments and supporting clients in achieving compliance with the Cybersecurity Maturity Model Certification (CMMC) framework.
- CMMC Assessment Execution: Conduct formal CMMC Level 2 assessments per Cyber-AB guidelines, including documentation reviews, interviews, and technical validations.
- Assessment Documentation & Reporting: Collect and evaluate evidence, document findings and scores, and support reporting for internal review and official submission.
- Client Communication: Serve as a trusted advisor, clearly communicating criteria, observations, and outcomes; engage with client teams to ensure shared understanding of expectations and results; provide feedback and insights on remediation where applicable.
- Framework Expertise: Maintain expertise on CMMC, NIST SP 800-171, and DoD cybersecurity requirements; support continuous improvement of assessment methods and maintain required certifications and professional development as required.
Qualifications & Knowledge:
- Must be a U.S. Citizen. All employees are subject to security screening
- CCA/Lead CCA Certification: Maintain active CCA/Lead CCA certification from the CMMC Accreditation Body (Cyber-AB)
- Bachelor’s degree in Cybersecurity, Information Technology, Engineering, or a related field; or equivalent professional experience
- +2 years’ experience conducting cybersecurity assessments in highly regulated environments
- Expertise in NIST SP 800-171, CMMC Level 2, and related cybersecurity frameworks
- Familiarity with ISO 27001, CIS Controls, and industry security best practices
- High degree of professional integrity, objectivity, and confidentiality
- Awareness of common vulnerabilities, system configurations, and IT security principles across cloud and on-premises environments
- Exceptional written and verbal communication abilities; meticulous attention to detail and accuracy; and excellent analytical and organizational skills
- Proficiency in Microsoft Suite and GRC software
- Proven ability to work both independently and collaboratively in a remote setting with ability to maintain flexible working hours to meet project deadlines
- Travel Requirement - estimated at 40%
.png "Internship Page Image (1)")