ASCERA

Practice Manager, Director, Principal – NIST/CMMC

ASCERA

full-time

Posted on:

Location Type: Remote

Location: United States

Visit company website

Explore more

AI Apply
Apply

Job Level

Lead

Tech Stack

Cyber Security

About the role

  • 112Cyber is seeking an experienced Services leader and Cyber Compliance professional ready to lead the growth and execution of our CMMC Compliance practice and team members.
  • Responsible for shaping and scaling our CMMC compliance services, owning customer delivery outcomes, and serving as a senior advisor to both clients and internal teams.
  • Drive strategic oversight of customer engagements, mentor and develop consultants, establish delivery standards, and partner closely with our platform and product teams to influence roadmap decisions based on customer needs.
  • Oversee and govern cybersecurity compliance engagements executed by senior consultants, ensuring consistent quality, methodology, and client outcomes.
  • Provide senior advisory oversight for customer programs supporting DFARS, CMMC, FedRAMP, NIST CSF and NIST SP 800-171 initiatives.
  • Own engagement success by partnering with client leadership to align regulatory requirements with business goals and risk tolerance.
  • Build and scale practice capability through the creation of repeatable delivery processes and ongoing consultant development.
  • Manage practice resources and capacity, aligning consultant skills and availability to active projects while balancing utilization, delivery timelines, and customer priorities.
  • Oversee formal CMMC assessments conducted by assessment teams, ensuring adherence to C3PAO requirements, assessment methodology, and accreditation standards.

Requirements

  • 5–8+ years of experience in IT security controls testing and documentation, including responsibility for managing and overseeing client control testing efforts.
  • 5+ years of experience leading and coordinating external and internal audit activities, including DFARS, CMMC, NIST 800-53, or similar regulatory assessments.
  • 5+ years of experience producing high-quality technical documentation, compliance deliverables, and executive-level reports.
  • 3+ experience in practice leadership, including managing consultant performance, capacity planning, delivery quality, and continuous improvement of service offerings.
  • Self-directed leader with a strong sense of ownership and accountability for outcomes.
  • Proven ability to engage executive stakeholders, build trusted relationships, and influence decision-making.
  • Exceptional communicator, able to translate complex technical and regulatory concepts into clear, actionable guidance for non-technical audiences.
  • Active Lead CMMC Certified Assessor (CCA) credential; if not CCA certified, willingness to obtain.
  • One or more industry certifications such as CISSP, CISM, CISA, CRISC, or equivalent.
Benefits
  • The chance to be part of a winning team and a premier fast-growing Cyber Risk and Compliance firm (offering both Advisory and C3PAO services).
  • One of only under (100) C3PAOs in the United States approved by the CyberAB (DoD).
  • Strong culture tied to building an organization around top-performing human capital and customer success.
  • Ability to help shape the business in terms of this individual and their direct impact on an organization; looking for an entrepreneurial individual driven by growth and impact [not a “cog in a much larger wheel”].
  • Growing sales pipeline based upon the growth in the CMMC market.
  • Competitive salary and bonus plan.
  • Long-term opportunity for equity interest in company.
  • Comprehensive medical, mental, and vision plans.
  • 401(k) with company match.
  • 30 days annual paid time off.
  • Significant Training and Development and Certification attainment.
  • Opportunity for long term career advancement.
  • Your contributions are felt and recognized at our growing company.
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
IT security controls testingdocumentationcompliance deliverablestechnical documentationCMMC complianceDFARSNIST 800-53C3PAO requirementsassessment methodologycapacity planning
Soft Skills
leadershipaccountabilitycommunicationrelationship buildinginfluence decision-makingmentoringstrategic oversightself-directioncontinuous improvementcustomer engagement
Certifications
Lead CMMC Certified Assessor (CCA)CISSPCISMCISACRISC