Cybersecurity CMMC Engineer - US Remote

Motorola Solutions•Georgia, US Offsite, MO

4d•$100,000 - $110,000•Remote

About The Position

The Cybersecurity Maturity Model Certification (CMMC) program was designed by the Department of War to ensure that all contractors within the Defense Industrial Base have sufficient cybersecurity controls in place to protect sensitive government information. Lunarline Inc., a wholly-owned subsidiary of Motorola Solutions, serves as an independent CMMC Third-Party Assessor Organization (C3PAO) and is authorized to conduct official assessments for defense contractors seeking CMMC certification. To meet the increasing demand for our assessment services, Lunarline is seeking a Certified CMMC Professional (CCP) to join our team with the ultimate goal of becoming a Certified CMMC Assessor (CCA).

Requirements

High School diploma, Bachelor's Degree, or 4+ years of experience fully qualified CCA with an active Certification.
Must have an approved, unexpired Tier 3 investigation, and must be in good standing with the Cyber AB (e.g., no CMMC Code of Professional Conduct violations).
Must be a U.S. Citizen and able to obtain an active SECRET Security Clearance.

Responsibilities

Participate in CMMC Level 1 and CMMC Level 2 assessments.
Understand the security practices of Level 1 and 2 assessments.
Gather evidence for assessments and provide "met/not met" inputs to the lead assessor for consideration.
Applied experience in assessing and analyzing cyber security documentation for client information systems.
Operational knowledge in identifying and mitigating cyber security risks through formal assessment activities.
Functional understanding of various standards to include NIST SP 800-171/171A Rev 2 and NIST SP 800-53/53A Rev 5 and how compliance with various standards and frameworks is achieved.
Functional understanding of 32 CFR Part 170 requirements and associated CMMC guidance (e.g., CMMC Assessment Process v2.0).
Familiarity with identifying and applying vulnerability remediations, fix procedures, and (when necessary) mitigation techniques.
Ability to participate in compliance-related and technical discussions to include applicable compliance frameworks, architectures, and security control requirements (technical and non-technical).
Basic knowledge of the following: External Service Providers, Cloud Computing/Cloud Service Providers, and FedRAMP.
Self-motivated and able to work in an independent manner or as part of a client delivery team.
Able to author original content/reports/attestations.
Exceptional organizational, planning, and attention to detail skills.
Assist with administrating the standalone CMMC 3PAO environment.
Ability to perform other assessments such as NIST CSF, NIST 800-171, or other compliance based assessments.
Able to work in a fast-paced, deadline-driven, remote environment.
Able to travel at least 25% as required for various client engagements.