Lead CMMC Assessor

Sentinel Blue

$100K — $130K *
US-AnywhereRemote in United States
Aerospace & Defense
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • Lead Certified CMMC Assessor (LCCA) credential in good standing with Cyber-AB and approved Tier III clearance.
  • Prior experience as a CMMC Assessor, consultant, or IT Auditor.
  • Strong knowledge of NIST SP 800-171, NIST SP 800-172, and CMMC Assessment Process (CAP).
  • Experience evaluating System Security Plans (SSPs), Plans of Action & Milestones (POA&Ms), and technical evidence in IT environments.
  • Excellent written communication skills for precise and defensible reporting.
  • Ability to manage multiple concurrent assessment engagements independently.

Responsibilities

  • Lead and conduct formal CMMC Level 2 assessments according to Cyber-AB requirements.
  • Plan assessment scope and evaluate evidence against NIST SP 800-171 practices.
  • Manage and mentor assessment team members throughout the assessment process.
  • Serve as the primary client contact during assessments, facilitating communication and clarification.
  • Produce clear assessment reports and findings for Cyber-AB submission.
  • Maintain assessment records respecting confidentiality and data handling regulations.
  • Stay updated on CMMC program changes and Cyber-AB guidance.

Benefits

  • Fully paid individual healthcare, vision, and dental insurance for the employee.
  • Paid certification and training opportunities.
  • Three weeks of paid vacation plus 10 paid holidays.
  • Supportive environment focused on healthy work-life balance.
  • Retirement benefit (401k) with company match.
Full Job Description
Sentinel Blue is hiring a Lead CMMC Assessor (LCCA) for our Radar team. This role leads formal CMMC Level 2 assessments for organizations in the defense industrial base pursuing certification. This role sits within Radar, our C3PAO assessment and compliance practice, and operates independently from Sentinel Blue's managed services delivery lines to preserve assessment integrity and objectivity.

This is not a delivery or remediation role. You will be planning and leading formal assessments, evaluating evidence against NIST SP 800-171 practices, managing assessment teams, and producing defensible findings that clients and the Cyber-AB can rely on.

This is a full-time position that is fully remote.

A day in the Lead CCA role:

You'll start the day meeting with your assessment team to review assigned practices and check their notes for completeness, accuracy, and consistency. You're also mentoring junior assessors, coaching them on how to ensure the environment is assessed and documented appropriately. From there, you're reviewing client documentation in preparation for both Phase 1 and Phase 2 activities.

You'll also lead calls with the client to confirm assessment scope, walk them through findings as they emerge, and verify that required evidence is accurate and relevant. At the close of the assessment, it's the Lead CCA who makes the final call on outcomes - determining whether each practice is scored MET or NOT MET, and ultimately whether the organization achieves certification.

Responsibilities:
  • Lead and conduct formal CMMC Level 2 assessments in accordance with the CMMC Assessment Process (CAP) and Cyber-AB requirements.
  • Plan assessment scope, review System Security Plans (SSPs) and Plans of Action & Milestones (POA&Ms), and evaluate evidence against NIST SP 800-171 practices.
  • Manage and mentor assessment team members, including junior assessors and CCPs, throughout the assessment lifecycle.
  • Serve as the primary point of contact for client organizations during assessments, including kickoff, evidence review sessions, and closing briefings.
  • Produce clear, defensible assessment reports and findings documentation for submission to the Cyber-AB.
  • Maintain assessment records in accordance with confidentiality and data handling requirements, ensuring no CUI or export-controlled data is mishandled during the assessment process.
  • Stay current on CMMC program updates, Cyber-AB guidance, and changes to NIST SP 800-171/800-172.
  • Support Radar's internal quality assurance processes to ensure assessments meet Cyber-AB and DoD standards.
  • Maintain clear separation between assessment activity and any Sentinel Blue managed services delivery to preserve independence and avoid conflicts of interest.

Requirements:
  • Lead Certified CMMC Assessor (LCCA) credential in good standing with the Cyber-AB with approved Tier III clearance.
  • Prior experience as a CMMC Assessor, consultant or IT Auditor.
  • Strong working knowledge of NIST SP 800-171, NIST SP 800-172, and the CMMC Assessment Process (CAP).
  • Experience evaluating SSPs, POA&Ms, and technical evidence across IT environments, including cloud environments.
  • Excellent written communication skills - assessment findings must be precise and defensible.
  • Ability to work independently and manage multiple concurrent assessment engagements.
  • Eligible to work with defense industrial base clients; U.S. citizenship may be required depending on client contract terms.

Desired Qualifications:
  • Hands-on assessment experience in Microsoft GCC High or Azure Government environments.
  • Prior experience leading or supervising assessment teams.
  • Additional certifications (CISSP, CISA, Lead CCA).
  • Bachelor's or Master's degree in Cybersecurity, Information Systems, Computer Science, or a related field.

Benefits:
  • Fully paid individual healthcare, vision and dental insurance for the employee.
  • Paid certification and training opportunities.
  • Three weeks of paid vacation + 10 paid holidays.
  • A supportive environment with a focus on keeping healthy work-life balance.
  • Retirement benefit (401k) with company match.

Similar Jobs

More Jobs at Sentinel Blue

More Aerospace & Defense Jobs

Find similar Lead CMMC Assessor jobs: