CMMC Practitioner / Pre Audit Specialist

About The Position

Requirements

• Cyber AB CCP (Certified CMMC Professional)
• CCA (Certified CMMC Assessor)
• RPA (Registered Practitioner Advanced)
• NIST 800‑171 hands‑on implementation experience
• DFARS 252.204‑7012 fluency
• CISSP or CISA for technical/compliance depth
• Deep understanding of CMMC Level 2 practices, assessment criteria, and evidence expectations
• Experience preparing organizations for C3PAO assessments
• Ability to translate compliance requirements into actionable engineering tasks
• Strong documentation, policy development, and audit‑facing communication skills
• Familiarity with CUI handling, enclave design, and boundary protection
• Must reside in the NCR (DC/MD/VA)
• Secret minimum; clearable candidates considered
• Understanding the real‑world implementation of NIST 800‑171, not just the text
• Expertise to guide organizations through complex pre‑audit readiness with clarity and confidence
• Communicate effectively with engineers, executives, and assessors
• Operate with precision, structure, and mission‑aligned discipline
• Thrive in high‑trust, high‑impact advisory environments supporting the DIB

Responsibilities

• Pre‑assessment readiness for CMMC Level 2, including gap analysis and remediation planning
• Development and refinement of SSPs, POA&Ms, evidence artifacts, and policy frameworks
• Mapping of NIST 800‑171 controls to technical implementations across on‑prem, cloud, and hybrid environments
• Advisory support for DFARS 252.204‑7012, incident reporting readiness, and CUI boundary protections
• Coordination with C3PAOs, RPOs, and internal stakeholders to ensure audit alignment
• Continuous monitoring and compliance sustainment strategies for DIB organizations