Job Description
Note: The job is a remote job and is open to candidates in USA. X4 Engineering is seeking an experienced CMMC Third-Party Assessor (3PAO Auditor) to conduct independent cybersecurity maturity assessments for U.S. Department of Defense contractors and subcontractors. The role involves performing evaluations in alignment with CMMC Level 2 and Level 3 requirements, ensuring compliance with NIST SP 800-171 and related frameworks. Responsibilities β’ Conduct CMMC Level 2 and Level 3 assessments in accordance with Cyber AB and DoD standards β’ Evaluate organizationsβ cybersecurity programs for compliance with NIST SP 800-171 and CMMC practices and processes β’ Review and validate documentation, evidence, and technical controls β’ Prepare detailed, accurate assessment reports and findings β’ Collaborate with clients to clarify assessment scope, timelines, and expectations while maintaining strict independence and objectivity β’ Participate in peer reviews, quality checks, and continuous improvement of audit methodologies β’ Stay current on evolving CMMC, NIST, DFARS, and related federal cybersecurity compliance updates Skills β’ Must be employed by or affiliated with an authorized Certified Third-Party Assessor Organization (C3PAO) β’ Active CMMC Certified Assessor (CCA) or Certified Professional (CCP) credential, or in-progress certification with the Cyber AB β’ Deep understanding of NIST SP 800-171, DFARS 252.204-7012, and CMMC model documentation β’ Demonstrated experience performing federal cybersecurity audits or assessments (e.g., CMMC, FedRAMP, ISO 27001, or similar) β’ U.S. Citizenship required (due to government contracting requirements) β’ Ability to obtain or maintain a DoD security clearance preferred β’ Excellent analytical, communication, and technical writing skills β’ Prior experience as a lead auditor within a C3PAO or related federal compliance program β’ Background in information security management, risk assessment, or DoD contractor compliance β’ Current certifications such as CISSP, CISA, CISM, or ISO 27001 Lead Auditor Benefits β’ Competitive salary β’ Benefits package β’ Professional development support β’ Flexible engagements available (project-based or hourly rate) Company Overview β’ X4 Engineering partner with businesses across the entire engineering spectrum, from early-stage R&D to commercial enterprises to provide world-class talent solutions. It was founded in 2008, and is headquartered in , with a workforce of 11-50 employees. Its website is Apply tot his job