Junior Certified CMMC Assessor (CCA) (0001)

OCT Consulting, LLCMcLean, VA
$35 - $50Remote

About The Position

OCT Consulting is seeking a Certified CMMC Assessor (CCA) to support the build-out of OCT’s CMMC Certified Third-Party Assessment Organization (C3PAO) practice. This position conducts CMMC Level 2 certification assessment activities as a member of the assessment team under the direction of the Lead Certified CMMC Assessor. The role involves examining documentation and artifacts, interviewing personnel, and testing security controls across NIST SP 800-171 Rev 2 requirements using NIST SP 800-171A methods. Responsibilities include documenting findings, recommending determinations for assigned requirements with supporting evidence, supporting the development of assessment plans, scope validation, pre-assessment readiness reviews, contributing to assessment reports, and supporting POA&M closeout activities. The role also requires maintaining assessment evidence and working papers in accordance with C3PAO procedures and ISO/IEC 17020:2012, and adhering to the Cyber AB Code of Professional Conduct, ethics, and impartiality requirements.

Requirements

  • Must be a U.S. Citizen.
  • Active Certified CMMC Assessor (CCA) certification in good standing.
  • Must be able to obtain and maintain a favorable Tier 3 background investigation resulting in a national security eligibility determination.
  • Bachelor’s degree in cybersecurity, information technology, information systems, or a related field, or equivalent professional experience.
  • Typically 4+ years of cybersecurity or information assurance experience, including exposure to NIST SP 800-171 / CMMC.
  • Working knowledge of NIST SP 800-171 Rev 2, NIST SP 800-171A, 32 CFR Part 170, and DFARS 252.204-7012.
  • Strong documentation, analytical, and communication skills.

Nice To Haves

  • Additional certifications such as CompTIA Security+, CISSP, CISA, or CCP preferred.

Responsibilities

  • Conduct CMMC Level 2 certification assessment activities as a member of the assessment team under the direction of the Lead Assessor (LCCA).
  • Examine documentation and artifacts, interview personnel, and test security controls across the 110 NIST SP 800-171 Rev 2 requirements using NIST SP 800-171A methods.
  • Document findings and recommend MET / NOT MET / NOT APPLICABLE determinations for assigned requirements, with supporting evidence.
  • Support development of the assessment plan, scope validation, and pre-assessment readiness reviews.
  • Contribute to the assessment report and support POA&M closeout activities within the required timeframe.
  • Maintain assessment evidence and working papers in accordance with C3PAO procedures and ISO/IEC 17020:2012.
  • Adhere to the Cyber AB Code of Professional Conduct, conflict-of-interest, ethics, and impartiality requirements at all times.

Benefits

  • Career growth
  • Professional development
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service