Quality Assurance, CMMC Assessments
Job in
McLean, Fairfax County, Virginia, USA
Listed on 2026-07-13
Listing for:
Jobtailor
Full Time
position Listed on 2026-07-13
Job specializations:
-
Quality Assurance - QA/QC
Job Description & How to Apply Below
Responsibilities
- Provide independent quality assurance review of CMMC Level 2 certification assessments, ensuring methodology, evidence sufficiency, scoring, and determinations are consistent, complete, and defensible.
- Review assessment plans, evidence packages, working papers, and final reports prior to issuance of any Certificate of CMMC Status.
- Maintain and continuously improve the C3
PAO quality management system in alignment with ISO/IEC 17020:2012 and Cyber AB requirements. - Verify adherence to NIST SP 800-171A assessment procedures and to the Cyber AB Code of Professional Conduct, conflict‑of‑interest, ethics, and impartiality requirements.
- Identify nonconformities, track corrective actions, and support internal audits and management reviews.
- Ensure assessment records are complete and retained per policy, and support DIBCAC and Cyber AB oversight and surveillance activities.
- Maintain independence from the assessment teams whose work is being reviewed in order to preserve impartiality of the quality function.
- Must be a U.S. Citizen. U.S. citizenship is mandatory for this role because all personnel participating in the CMMC Level 2 certification assessment process must complete a Tier 3 background investigation resulting in a determination of national security eligibility.
- Active Certified CMMC Assessor (CCA) certification in good standing (required for this role in addition to quality responsibilities).
- Must be able to obtain and maintain a favorable Tier 3 background investigation resulting in a national security eligibility determination (this is not a security clearance and is not for the purpose of government employment). The investigation will involve a credit, fingerprint, and law enforcement agency check.
- Bachelor’s degree in cybersecurity, information technology, quality management, or a related field, or equivalent professional experience.
- Typically 6+ years of cybersecurity, information assurance, audit, or quality experience, including NIST SP 800-171 / CMMC.
- Knowledge of ISO/IEC 17020:2012, quality management systems, and internal auditing practices.
- Familiarity with NIST SP 800-171 Rev 2, NIST SP 800-171A, and 32 CFR Part 170.
- Certifications such as CISA, ISO 17020 / quality auditor credentials, or CISSP preferred.
- Strong attention to detail, sound independent judgment, and the ability to maintain impartiality.
- Location / on-site:
Remote‑eligible with occasional client site travel as required.
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
Search for further Jobs Here:
×