CMMC Compliance Consultant
$110,000–$140,000 year
Remote · San Diego, California, United States
San Diego, California, United StatesRemoteFull Time$110,000–$140,000 yearMid LevelBachelors DegreeUnknown
Type
Full Time
Level
Mid Level
Education
Bachelors Degree
Company size
Unknown
Job Summary
Lead end-to-end CMMC Level 2 assessments, author SSPs and POA&Ms, scope CUI environments in Microsoft 365 GCC/GCC High, and produce assessor-ready documentation. Serve as primary technical point of contact for DIB accounts through the compliance lifecycle, mentor junior consultants, and keep practice methodologies current by tracking changes in 32 CFR Part 170, DFARS 252.204-7021, and Cyber AB guidance.
Required Qualifications
- Active CMMC Certified Professional (CCP) credential in good standing with the Cyber AB
- Active CMMC Certified Assessor (CCA) credential in good standing with the Cyber AB
- Minimum 5 years of progressive IT experience, with at least 2 years focused on cybersecurity
- Minimum 1 year of direct CMMC, DFARS 252.204-7012/7021, NIST SP 800-171, or other compliance consulting experience
- Demonstrated expertise scoping CUI environments and applying NIST SP 800-171 Rev 2 across all 14 control families
- Hands-on experience with Microsoft 365 Commercial, GCC, and/or GCC High environments in a CMMC compliance context
- Working knowledge of Azure Sentinel, Microsoft Defender for Endpoint (MDE), and Intune within CMMC-scoped environments
- Strong proficiency writing SSP implementation narratives, NIST 800-171A-aligned assessment procedures, and POA&M documentation
- Familiarity with FedRAMP Moderate authorization requirements and cloud service provider boundary scoping
- Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a closely related field
Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.