New

Lead Consultant - CMMC Cybersecurity Assessor

Forvis Mazars, LLP
United States, Virginia, Tysons
1410 Spring Hill Road (Show on map)
Apr 16, 2026
General information Name Lead Consultant - CMMC Cybersecurity Assessor Posting Title Lead Consultant - CMMC Cybersecurity Assessor Ref # 2236444 Date Published Tuesday, February 24, 2026 City Charlotte State North Carolina Country United States Job Category Risk Advisory Advertised Location US-FL-Tampa Bay, US-GA-Atlanta, US-NC-Charlotte, US-NC-Charlotte, US-TX-Dallas, US-VA-Tysons Working time Full Time Description & Requirements The IT Risk & Compliance team helps organizations manage IT governance, cybersecurity, and regulatory compliance across industries. With expertise in frameworks like CMMC, NIST, and ISO 27001, they offer services including IT audits, risk assessments, ransomware simulations, and control testing. Their tailored strategies ensure data security, regulatory alignment, and operational continuity-empowering clients to navigate today's complex digital risk landscape with confidence. What You Will Do: Conduct information security risk and compliance assessments aligned with federal and government-mandated cybersecurity frameworks, including CMMC, NIST SP 800-171, NIST SP 800-53, FedRAMP/StateRAMP, and the NIST Cybersecurity Framework. Evaluate IT environments to identify compliance gaps and vulnerabilities; document findings with clear reporting, proof-of-concept, and actionable recommendations. Lead and perform assessments based on NIST SP 800-171 to support CMMC Level 2 certification readiness. Collaborate with consulting teams serving large enterprise clients across various industries. Assist organizations in defining system boundaries for in-scope environments. Support clients in developing documentation such as System Security Plans (SSPs), policies and procedures, strategic plans, and Plans of Action and Milestones (POA&Ms). Design and implement solutions-including tools, processes, and data flows-to meet compliance requirements and reduce cybersecurity risk. Manage multiple concurrent projects, ensuring timely delivery and adherence to budget constraints. Contribute to the development of new strategic service offerings in federal cybersecurity compliance; build solution roadmaps and mentor junior team members. Minimum Qualifications: Associate's Degree in Cybersecurity, Management Information Systems (MIS), Computer Science, or a related field; or a minimum of six years of relevant experience. 4+ years of relevant experience in cybersecurity, IT audit, or governance, risk, and compliance Experience in a minimum of 1 of the following frameworks: NIST Cybersecurity Framework (CSF) Cybersecurity Maturity Model Certification (CMMC) and/or NIST SP 800-171 Payment Card Industry Data Security Standard (PCI DSS) o ISO 27001 / 27002 FedRAMP / StateRAMP FISMA and NIST SP 800-53 o CIS Critical Security Controls Experience providing consulting, assessment, or implementation services associated with federal cyber compliance frameworks, including NIST 800-171, FISMA, or FedRAMP. Working knowledge of cyber risk management frameworks (CMMC / NIST 800-171, FISMA, FedRAMP, NIST Cybersecurity Framework, NIST SP 800-53) General knowledge of common compliance frameworks (PCI DSS, ISO 27001, HIPAA/HITRUST) Proficiency in Microsoft Office Suite CMMC Certified Assessor (CCA) credential Preferred Qualifications: Bachelor's Degree in Cybersecurity, MIS, Computer Science, or a relevant field Professional services or consulting experience Current and valid cybersecurity and/or privacy-related certification(s), including but not limited to the following: CISSP, CISA, CISM, QSA, and CIPP #LI-TPA, #LI-ATL, #LI-CLTSP, #LI-CLTU, #LI-TYS #LI-GM1 About Forvis Mazars, LLP Forvis Mazars, LLP is an independent member of Forvis Mazars Global, a leading global professional services network. Ranked among the largest public accounting firms in the United States, our 7,000+ team members deliver assurance, tax, and consulting services to clients in all 50 states and internationally. With a legacy spanning more than 100 years, we're building something different. We are guided by a shared promise: Together, we create extraordinary experiences. That means delivering an Unmatched Client Experience while creating a workplace where relationships matter, learning fuels growth, and every person feels valued and supported to thrive. What We Offer Our robust total rewards program and flexible work environment reflect our commitment to people, careers, and well-being-empowering our team to grow and thrive while delivering exceptional service. To explore what makes working at Forvis Mazars special, visit www.forvismazars.us/careers. Legal Notice Forvis Mazars, LLP is an equal opportunity/affirmative action employer in accordance with applicable law. Employment selection and related decisions are made without regard to age, race, color, sex, sexual orientation, national origin, religion, genetic information, disability, protected veteran status, gender identity, or other protected classifications. It is Forvis Mazars, LLP standard policy not to accept unsolicited referrals or resumes from any source other than directly from candidates. Forvis Mazars, LLP expressly reserves the right not to consider any unsolicited referrals, resumes or CVs from vendors including and without limitation, search firms, staffing agencies, fee-based referral services, and recruiting agencies. Forvis Mazars, LLP further reserves the right not to pay a fee to a recruiter or recruiting agency unless such recruiter or recruiting agency has a signed vendor agreement with Forvis Mazars, LLP. Any resume(s) or CV(s) submitted to anyone working for Forvis Mazars, LLP, or submitted to a Forvis Mazars, LLP general email, without having a Forvis Mazars, LLP vendor agreement in place, will be considered the property of Forvis Mazars, LLP.