Perform complex, senior-level auditing and advisory work to develop a new audit program and processes for SOC2 and Department of Defense (DOD) Cybersecurity Maturity Model Certification (CMMC ...
Perform complex, senior-level auditing and advisory work to develop a new audit program and processes for SOC2 and Department of Defense (DOD) Cybersecurity Maturity Model Certification (CMMC ...
Contract CMMC Assessor
Akron, OH · On-site
An ISO 27001 Lead Auditor certification is desired.
Contract CMMC Assessor
Akron, OH · On-site
An ISO 27001 Lead Auditor certification is desired.
Contract CMMC Assessor
Akron, OH · On-site
Smithers is an authorized CMMC Third-Party Assessment Organization (C3PAO) in the CMMC ecosystem ... Your goal is to build positive relationships with our customers while providing quality auditing ...
Contract CMMC Assessor
Akron, OH · On-site
Smithers is an authorized CMMC Third-Party Assessment Organization (C3PAO) in the CMMC ecosystem ... Your goal is to build positive relationships with our customers while providing quality auditing ...
CMMC Level 2 Certified Assessor
Tampa, FL · On-site +1
The ideal candidate will have a proven track record in information security, compliance, and auditing, with expertise in NIST 800-171 standards and the CMMC Assessment Process. This role involves ...
CMMC Level 2 Certified Assessor
Tampa, FL · On-site +1
The ideal candidate will have a proven track record in information security, compliance, and auditing, with expertise in NIST 800-171 standards and the CMMC Assessment Process. This role involves ...
Skillbridge CMMC Fellow
Herndon, VA · Hybrid
$50K - $68K/yr
As part of our Skillbridge CMMC Fellowship , you will build your foundation in cybersecurity ... Certified Information Security Auditor (CISA) * Certified Information Security Manager (CISM)
Skillbridge CMMC Fellow
Herndon, VA · Hybrid
$50K - $68K/yr
As part of our Skillbridge CMMC Fellowship , you will build your foundation in cybersecurity ... Certified Information Security Auditor (CISA) * Certified Information Security Manager (CISM)
CMMC Level 2 Certified Assessor
Tampa, FL · Remote
The ideal candidate will have a proven track record in information security, compliance, and auditing, with expertise in NIST 800-171 standards and the CMMC Assessment Process. This role involves ...
Quick apply
CMMC Level 2 Certified Assessor
Tampa, FL · Remote
The ideal candidate will have a proven track record in information security, compliance, and auditing, with expertise in NIST 800-171 standards and the CMMC Assessment Process. This role involves ...
Provides administrative support to Management, Auditors, and other administrative staff. Must be a ISACA CMMC Certified Professional in good standing. ESSENTIAL DUTIES AND RESPONSIBILITIES: Include ...
Provides administrative support to Management, Auditors, and other administrative staff. Must be a ISACA CMMC Certified Professional in good standing. ESSENTIAL DUTIES AND RESPONSIBILITIES: Include ...
CMMC Assessment Coordinator
Akron, OH · On-site
Provides administrative support to Management, Auditors, and other administrative staff. Must be a ISACA CMMC Certified Professional in good standing. ESSENTIAL DUTIES AND RESPONSIBILITIES: Include ...
CMMC Assessment Coordinator
Akron, OH · On-site
Provides administrative support to Management, Auditors, and other administrative staff. Must be a ISACA CMMC Certified Professional in good standing. ESSENTIAL DUTIES AND RESPONSIBILITIES: Include ...
Regulatory Compliance Lead Auditor
Southfield, MI · On-site +1
$82K - $123K/yr
REMOTE | Lead Aerospace Quality & Compliance Auditor CMMC & Regulatory Growth Opportunity Location: Remote (Candidates must reside in the Midwest or East Coast) Travel: Up to 50% domestic Employment ...
Regulatory Compliance Lead Auditor
Southfield, MI · On-site +1
$82K - $123K/yr
REMOTE | Lead Aerospace Quality & Compliance Auditor CMMC & Regulatory Growth Opportunity Location: Remote (Candidates must reside in the Midwest or East Coast) Travel: Up to 50% domestic Employment ...
CMMC Compliance Analyst
Tucson, AZ · On-site
Within ProStratus, the CMMC Compliance Analyst operates our Governance, Risk, and Compliance (GRC) platform--managing, generating, and auditing policies, procedures, and supporting evidence required ...
Quick apply
CMMC Compliance Analyst
Tucson, AZ · On-site
Within ProStratus, the CMMC Compliance Analyst operates our Governance, Risk, and Compliance (GRC) platform--managing, generating, and auditing policies, procedures, and supporting evidence required ...
CMMC Compliance Analyst
Tucson, AZ · On-site
Within ProStratus, the CMMC Compliance Analyst operates our Governance, Risk, and Compliance (GRC) platform--managing, generating, and auditing policies, procedures, and supporting evidence required ...
Quick apply
CMMC Compliance Analyst
Tucson, AZ · On-site
Within ProStratus, the CMMC Compliance Analyst operates our Governance, Risk, and Compliance (GRC) platform--managing, generating, and auditing policies, procedures, and supporting evidence required ...
CMMC Compliance Analyst
Springfield, OH · On-site
Within ProStratus, the CMMC Compliance Analyst operates our Governance, Risk, and Compliance (GRC) platform--managing, generating, and auditing policies, procedures, and supporting evidence required ...
Quick apply
CMMC Compliance Analyst
Springfield, OH · On-site
Within ProStratus, the CMMC Compliance Analyst operates our Governance, Risk, and Compliance (GRC) platform--managing, generating, and auditing policies, procedures, and supporting evidence required ...
CMMC Compliance Analyst
Springfield, OH · On-site
Within ProStratus, the CMMC Compliance Analyst operates our Governance, Risk, and Compliance (GRC) platform--managing, generating, and auditing policies, procedures, and supporting evidence required ...
Quick apply
CMMC Compliance Analyst
Springfield, OH · On-site
Within ProStratus, the CMMC Compliance Analyst operates our Governance, Risk, and Compliance (GRC) platform--managing, generating, and auditing policies, procedures, and supporting evidence required ...
CMMC Compliance Manager
Rockville, MD · Remote
$125K - $130K/yr
Knowledge of security concepts and common tools including EDR, vulnerability management, patchmanagementand auditing (SIEM) functions * Experience implementing NIST SP 800-171 / CMMC Level 2 ...
CMMC Compliance Manager
Rockville, MD · Remote
$125K - $130K/yr
Knowledge of security concepts and common tools including EDR, vulnerability management, patchmanagementand auditing (SIEM) functions * Experience implementing NIST SP 800-171 / CMMC Level 2 ...
CMMC Compliance Manager
Rockville, MD · On-site
$125K - $130K/yr
Knowledge of security concepts and common tools including EDR, vulnerability management, patch management and auditing (SIEM) functions * Experience implementing NIST SP 800-171 / CMMC Level 2 ...
CMMC Compliance Manager
Rockville, MD · On-site
$125K - $130K/yr
Knowledge of security concepts and common tools including EDR, vulnerability management, patch management and auditing (SIEM) functions * Experience implementing NIST SP 800-171 / CMMC Level 2 ...
CMMC Compliance Manager
Rockville, MD · Remote
Knowledge of security concepts and common tools including EDR, vulnerability management, patchmanagementand auditing (SIEM) functions * Experience implementing NIST SP 800-171 / CMMC Level 2 ...
Quick apply
CMMC Compliance Manager
Rockville, MD · Remote
Knowledge of security concepts and common tools including EDR, vulnerability management, patchmanagementand auditing (SIEM) functions * Experience implementing NIST SP 800-171 / CMMC Level 2 ...
PA · On-site
$99K - $165K/yr
Work with external auditors and certification bodies to facilitate CMMC assessments and certifications. * Develop and maintain a CMMC compliance program that aligns with GE Vernova's overall ...
PA · On-site
$99K - $165K/yr
Work with external auditors and certification bodies to facilitate CMMC assessments and certifications. * Develop and maintain a CMMC compliance program that aligns with GE Vernova's overall ...
CMMC Certified Assessor (CCA)
Houston, TX · On-site
Contractor On Demand LRQA CMMC Division - CCA Job Solicitation Leading Global Assurance Partner ... * 1+ year of assessment/auditing experience. * 2+ years of project management experience.
CMMC Certified Assessor (CCA)
Houston, TX · On-site
Contractor On Demand LRQA CMMC Division - CCA Job Solicitation Leading Global Assurance Partner ... * 1+ year of assessment/auditing experience. * 2+ years of project management experience.
Regulatory Compliance Lead Auditor
Southfield, MI · Remote
$82K - $123K/yr
REMOTE | Lead Aerospace Quality & Compliance Auditor CMMC & Regulatory Growth Opportunity Location: Remote (Candidates must reside in the Midwest or East Coast) Travel: Up to 50% domestic Employment ...
Regulatory Compliance Lead Auditor
Southfield, MI · Remote
$82K - $123K/yr
REMOTE | Lead Aerospace Quality & Compliance Auditor CMMC & Regulatory Growth Opportunity Location: Remote (Candidates must reside in the Midwest or East Coast) Travel: Up to 50% domestic Employment ...
As part of our Skillbridge CMMC Fellowship, you will build your foundation in cybersecurity ... auditing, vulnerability management, or technical writing. Familiarity with NIST SP 800-171, NIST SP ...
As part of our Skillbridge CMMC Fellowship, you will build your foundation in cybersecurity ... auditing, vulnerability management, or technical writing. Familiarity with NIST SP 800-171, NIST SP ...
Cmmc Auditor information
See salary details
$10.34 - $13.61
15% of jobs
$14.34 is the 25th percentile. Wages below this are outliers.
$13.61 - $16.89
46% of jobs
$18.63 is the 75th percentile. Wages above this are outliers.
$16.89 - $20.17
26% of jobs
$20.17 - $23.45
7% of jobs
$23.45 - $26.73
1% of jobs
$26.73 - $30
1% of jobs
$30 - $33.28
1% of jobs
$33.28 - $36.56
0% of jobs
$36.56 - $39.84
1% of jobs
$39.84 - $43.12
1% of jobs
$43.12 - $46.39
0% of jobs
$10
$19
$46
How much do cmmc auditor jobs pay per hour?
As of Jun 13, 2026, the average hourly pay for cmmc auditor in the United States is $19.21, according to ZipRecruiter salary data. Most workers in this role earn between $14.42 and $19.23 per hour, depending on experience, location, and employer.
What are the typical challenges a CMMC Auditor faces during assessments?
CMMC Auditors often face challenges related to interpreting evolving compliance requirements and navigating complex organizational IT environments. Effectively communicating findings to stakeholders with varying technical backgrounds and maintaining objectivity throughout the audit process can also be demanding. Additionally, auditors must stay current on updates to CMMC guidelines and industry best practices to deliver accurate evaluations. These challenges make critical thinking and adaptability especially important for success in the role.
How much does a CMMC consultant make?
A CMMC auditor or consultant typically earns between $70,000 and $120,000 annually, depending on experience, certifications, and the complexity of the projects. Senior or specialized consultants with extensive cybersecurity expertise can earn higher salaries, especially when working independently or on contract basis.
How much do certified CMMC assessors make?
Certified CMMC assessors typically earn between $70,000 and $120,000 annually, depending on experience, location, and the complexity of assessments. Salaries can increase with additional certifications, specialized knowledge, and the number of assessments conducted annually.
What are the key skills and qualifications needed to thrive in the Cmmc Auditor position, and why are they important?
To thrive as a CMMC Auditor, you need a robust understanding of cybersecurity frameworks, risk assessment, and compliance standards, usually backed by relevant industry certifications such as CMMC-AB Certified Professional or Lead Auditor credentials. Proficiency with compliance management platforms, audit tools, and familiarity with NIST SP 800-171 controls is essential. Strong analytical skills, attention to detail, and effective communication are key soft skills for engaging with clients and preparing thorough audit reports. These abilities ensure accurate assessments, help organizations achieve CMMC certification, and maintain the integrity of sensitive information systems.
What type of auditor gets paid the most?
In the auditing field, senior or lead auditors, especially those with specialized certifications like Certified Internal Auditor (CIA) or Certified Information Systems Auditor (CISA), tend to earn the highest salaries. CMMC auditors with advanced experience and certifications in cybersecurity or compliance may also command higher pay due to the specialized nature of their work.
What is a CMMC Auditor job?
A CMMC Auditor evaluates an organization's cybersecurity practices to ensure compliance with the Cybersecurity Maturity Model Certification (CMMC) framework. They assess security controls, policies, and procedures to verify they meet the required maturity level for handling controlled unclassified information (CUI). Auditors may work for a Certified Third-Party Assessment Organization (C3PAO) and conduct official CMMC assessments. Their role is critical in helping defense contractors meet Department of Defense (DoD) cybersecurity requirements.
How much does a CMMC compliance officer make?
A CMMC compliance officer's salary typically ranges from $70,000 to $130,000 annually, depending on experience, certifications, and the size of the organization. Professionals with cybersecurity, auditing, or compliance skills and relevant certifications like CMMC-AB or CISSP tend to earn higher salaries.
More about Cmmc Auditor jobs
What cities are hiring for Cmmc Auditor jobs? Cities with the most Cmmc Auditor job openings:
What states have the most Cmmc Auditor jobs? States with the most job openings for Cmmc Auditor jobs include:
What job categories do people searching Cmmc Auditor jobs look for? The top searched job categories for Cmmc Auditor jobs are:
Job description
You will work with our engineers, support representatives, and external auditors to:
Requirements
You have experience with:
You should...
It would be a plus if you have...
- Perform complex, senior-level auditing and advisory work to develop a new audit program and processes for SOC2 and Department of Defense (DOD) Cybersecurity Maturity Model Certification (CMMC) / FedRAMP.
- Conduct research, benchmarking, examining and reviewing records & financial statements.
- Perform data & risk analyses, identify appropriate controls, assess business processes, and evaluate management processes.
- Manage the development of an appropriate audit scope, selection of an external auditor, and successful completion of audits annually.
- Continuously collect operational documentation and data samples in order to close process gaps or to document accepted risk before a gap becomes a finding.
- Maintain relationships with our external auditors to anticipate changes to audit focuses and prepare the organization for them.
- Educate the organization about audit requirements, risk analysis and controls, and assist us with integrating best practices into our existing operational framework.
- Identify and document corrective actions that need to be taken based on audit reports.
- Respond to client requests for documentation of our processes and audit reports.
- Understand and follow changes to CUECs from our partners and vendors.
Requirements
You have experience with:
- Auditing in accordance with generally accepted auditing standards and risk-based internal auditing.
- Basic information technology controls in a cloud environment.
- Analyzing, interpreting, and summarizing data, policies, and procedures for effective performance of audit work.
- Establishing and maintaining trust-based relationships with internal and external stakeholders.
You should...
- Have advanced writing and communication skills.
- Be willing to apply your skills across our small organization, from the low level (e.g. writing process documentation) to high level (e.g. developing organizational audit plans).
- Help us maintain the culture and values of our organization.
It would be a plus if you have...
- Some experience with DOD cybersecurity requirements and contracts, e.g. NIST 800-171.
- Some experience with FedRAMP requirements.