[Remote] CMMC Registered Practitioner

Note: The job is a remote job and is open to candidates in USA. Clearwater is a cybersecurity consulting firm seeking a CMMC Registered Practitioner to assist defense contractors in preparing for Cybersecurity Maturity Model Certification (CMMC) assessments. The role involves providing advisory services, conducting gap analyses, and supporting clients in implementing security controls to enhance compliance and cybersecurity maturity.

Responsibilities

• Provide advisory, consulting, and implementation support to Department of Defense (DoD) contractors and Organizations Seeking Certification (OSCs) preparing for Cybersecurity Maturity Model Certification (CMMC)
• Serve as a trusted advisor to DIB organizations by providing guidance on CMMC requirements, DFARS clauses, and NIST SP 800-171 standards to improve cybersecurity maturity and compliance readiness
• Conduct CMMC gap analyses and readiness assessments to identify gaps between an organization’s current cybersecurity posture and required CMMC maturity levels
• Conduct mock assessments and pre-assessment reviews to help organizations prepare for official CMMC assessments conducted by C3PAOs
• Assist clients with remediation planning and implementation, including the development and execution of cybersecurity policies, procedures, and technical controls aligned with CMMC requirements
• Support the creation, review, and maintenance of required CMMC documentation, including System Security Plans (SSPs), Plans of Action and Milestones (POA&Ms), and supporting artifacts to demonstrate compliance
• Strong client-service orientation and the ability to Work independently across multiple client engagements simultaneously
• Exercise sound judgment and initiative to manage priorities and timelines
• Quickly establish trust with a wide range of DIB professionals
• Ask effective questions and actively listen to uncover technical, operational, and business risks
• Demonstrate strong organizational, documentation, writing, and communication skills
• Develop presentations with clear messaging and deliver briefings to senior executives
• Collaborate with internal consultants and external client stakeholders to drive engagements forward
• Identify, manage, and escalate client engagement risks and issues appropriately

Skills

• Provide advisory, consulting, and implementation support to Department of Defense (DoD) contractors and Organizations Seeking Certification (OSCs) preparing for Cybersecurity Maturity Model Certification (CMMC)
• Serve as a trusted advisor to DIB organizations by providing guidance on CMMC requirements, DFARS clauses, and NIST SP 800-171 standards to improve cybersecurity maturity and compliance readiness
• Conduct CMMC gap analyses and readiness assessments to identify gaps between an organization's current cybersecurity posture and required CMMC maturity levels
• Conduct mock assessments and pre-assessment reviews to help organizations prepare for official CMMC assessments conducted by C3PAOs
• Assist clients with remediation planning and implementation, including the development and execution of cybersecurity policies, procedures, and technical controls aligned with CMMC requirements
• Support the creation, review, and maintenance of required CMMC documentation, including System Security Plans (SSPs), Plans of Action and Milestones (POA&Ms), and supporting artifacts to demonstrate compliance
• Strong client-service orientation and the ability to work independently across multiple client engagements simultaneously
• Exercise sound judgment and initiative to manage priorities and timelines
• Quickly establish trust with a wide range of DIB professionals
• Ask effective questions and actively listen to uncover technical, operational, and business risks
• Demonstrate strong organizational, documentation, writing, and communication skills
• Develop presentations with clear messaging and deliver briefings to senior executives
• Collaborate with internal consultants and external client stakeholders to drive engagements forward
• Identify, manage, and escalate client engagement risks and issues appropriately
• At least 1–2 years of experience (including military experience) in cybersecurity, information technology, compliance, or risk management
• Demonstrable experience supporting cybersecurity advisory, implementation, or compliance efforts, including direct client engagement and delivery against defined standards
• Register with the Cyber AB
• Pass a Tier 3 Background investigation by DoD
• Complete RP training
• Sign and abide by the Cyber AB Code of Professional Conduct

Benefits

• Merit-based salary increases
• Eligibility for our 401(k) plan
• Medical, dental, vision, life and disability insurances
• Flexible paid time off
• 11 paid holidays
• Paid sick time

Company Overview