Salary: $120,000 – $150,000
Work Type: Remote – 20% Travel to Client Sites
Location: US Based (Preference for Eastern or Central Time Zones)
About ControlCase
ControlCase is a global leader in certification, cybersecurity, and continuous compliance services. The company helps organizations design and implement efficient and cost-effective information security and compliance programs for both on-premise and cloud environments. ControlCase supports organizations that must comply with standards such as PCI DSS, HITRUST, SOC 2 Type II, ISO 27001, PCI PIN, PCI P2PE, PCI TSP, PA DSS, CSA STAR, HIPAA, GDPR, SWIFT, CMMC, and FedRAMP.
Headquartered in Fairfax, Virginia, ControlCase operates globally with offices across North America, Europe, Latin America, Asia-Pacific, and the Middle East. The company provides Compliance as a Service (CaaS) solutions that help businesses meet regulatory compliance requirements efficiently and cost-effectively.
About the Role
ControlCase is seeking an experienced Senior Assessor with 5+ years of relevant experience to lead and execute CMMC audits. The ideal candidate will have strong experience reviewing and testing controls, documenting audit artifacts and reports, and completing all documentation required for the successful submission of CMMC certification documents under the approved CMMC Assessment Process (CAP).
Key Responsibilities
- Lead and perform comprehensive CMMC audits, including the review and testing of all applicable controls.
- Prepare and document all required audit artifacts, documentation, and reports accurately.
- Complete all documentation required for submission to eMass and ensure successful acceptance of CMMC certification documentation.
- Oversee and guide junior assessors assigned to audit and certification projects.
- Ensure all audit documentation and reports are completed thoroughly and on time.
- Maintain high-quality documentation and compliance with audit standards.
If you are a detail-oriented professional with a strong interest in cybersecurity and compliance, we encourage you to apply.
Required Qualifications
- 5+ years of relevant professional experience.
- Active CCA or CCP certification AND active CISSP, CISA, CISM, or equivalent certification.
- Previous IT audit experience is required; CMMC audit experience is preferred.
- Strong knowledge of security frameworks including CMMC 2.0, NIST 800-171, and NIST 800-53 Rev 5.
- Strong understanding of cloud security, including FedRAMP and cloud computing best practices.
CMMC Audit Proficiency
- Proven ability to conduct full CMMC audits including review of required documentation such as the System Security Plan (SSP).
- Experience completing CMMC audit artifacts and preparing detailed audit reports.
Additional Requirements
- Strong written and verbal communication skills to prepare CMMC reports and communicate risks to client management and IT teams.
- U.S. citizenship is required.
- Bachelor’s degree (BS/BA) or equivalent military experience.
- Required certifications include CCA or CCP along with CISSP, CISA, CISM, or equivalent.
What ControlCase Offers
ControlCase supports employee success and well-being by offering strong benefits, opportunities for growth, and the chance to collaborate with a global cybersecurity and compliance team.
Employee Benefits
- Company-provided equipment including computer and essential work tools.
- 401(k) retirement savings plan.
- Comprehensive health insurance coverage.
- Dental and vision insurance.
- 100% company-paid life insurance.
- Paid Time Off (PTO) and official holidays.
- Mileage and travel reimbursement for business travel.
- Cell phone and internet reimbursement.
- Employee Assistance Program (EAP) for counseling and personal support.
- Flexible Spending Account (FSA) for healthcare and dependent care expenses.
- Employee discount programs with partner vendors.
- Employee referral program.
This is a fully remote role that offers flexibility to work from home. You will collaborate with global teams through virtual meetings while managing your responsibilities and contributing to ControlCase’s cybersecurity and compliance initiatives.
Point of Contact
Andrew Lauchengco
Talent Acquisition Lead
Mobile: 571-251-4435
Email: alauchengco@controlcase.com