United States onlyWork with a nationally ranked CPA and advisory firm that is passionate for what's next. Aprio has 30 U.S. office locations, one in the Philippines and more than 2,100 team members that speak 60+ languages across the globe. By bringing together proven expertise, deep understanding, and strategic foresight for fast-growing industries, Aprio ensures clients are prepared for wherever life or business may take them. Discover a top-rated culture, vast growth opportunities and your next big career move with Aprio.
Join Aprio's Risk Advisory and Assurance Services team and you will help clients maximize their opportunities. Aprio is a progressive, fast-growing firm looking for a Senior Assessor (CCA or LCCA) to join their dynamic team.
The Senior Manager, IAS C3PAO leads the delivery and management of US Government cybersecurity compliance engagements which include but are not limited to CMMC, FedRAMP, GovRAMP, NIST RMF, CMS AE/DEE/EDE and NIST CSF. Engagements will be either Advisory or Assessment in nature. As an accredited FedRAMP 3PAO and an authorized CMMC C3PAO, the assessments will be official certification. This role involves both leadership and hands-on management of teams, ensuring technical rigor, operational excellence, and high client value. The successful candidate will be recognized as a subject‐matter expert in US Government cybersecurity controls, e.g, NIST 800-171 and NIST 800-53, associated compliance frameworks as listed above, and technologies used to implement and validate the controls IAW Government requirements.
Position Responsibilities:
- Lead and manage projects (referred to as engagements): scoping, client readiness, assessment execution, report preparation, findings remediation (for advisory engagements), certification recommendations, and quality assurance to meet USG standards.
- Serve as primary point of contact for clients, senior stakeholders (CISO, VP Security, program managers), and regulators.
- Oversee and mentor a team of assessors, auditors, consultants, and technical experts, ensuring consistent methodology, quality of deliverables, and adherence to accreditation standards.
- Develop and implement program frameworks, playbooks, templates, and tools for efficient assessment deployment across client sites and systems.
- Identify and escalate risks, control gaps, and remediation pathways; collaborate with clients to develop Plans of Action & Milestones (POA&Ms) and track progress.
- Ensure continuous monitoring and compliance of client systems, supporting repeat assessments and beyond certification status.
- Partner with business development, capture, and proposal teams to build the practice, win new work, and expand service offerings in information assurance and cybersecurity.
- Maintain up-to-date awareness of regulatory standards and accreditation changes to the frameworks listed above, and integrate these changes into assessment/advisory thinking.
- Communicate complex technical findings and cybersecurity risks to non-technical leadership, providing actionable recommendations.
Qualifications:
- Bachelor’s degree in Computer Science, Information Systems, Cybersecurity or related field (Master’s a plus).
- Minimum of 6+ years of experience in cybersecurity, information assurance, third-party assessments, or compliance (experience with other C3PAOs, assessor organization or consulting firm strongly preferred).
- Demonstrated experience managing assessment engagements under frameworks such as CMMC, NIST SP 800-171/800-53, FedRAMP, GovRAMP, NIST RMF, or similar.
- Strong technical understanding of cybersecurity controls, risk-based assessment methodologies, and audit criteria.
- Leadership experience managing teams, delegating work, mentoring staff and driving high performance.
- Excellent communication skills, with experience translating technical cyber and compliance issues into business-focused insights for senior leadership.
- Ability to travel (domestic and possibly international) to client sites for assessments or audits (travel % to be determined).
- Candidate will already have successfully undergone and completed the required DoD CMMC Tier 3 background investigation for immediate placement on assessments.
- Recognized LCCA or CCA (verifiable on CyberAB marketplace) OR recognized CCP with strong understanding and experience in RMF for DoD IT or FedRAMP/DISA’s FedRAMP+.
- Demonstrated ability to manage client engagements including project planning, overall delivery structure or methodology; ability to pivot if/when client’s business landscape drives project changes.
Preferred Qualifications
- Experience with cloud environments (SaaS, IaaS, PaaS), DevSecOps, identity & access management, penetration testing or GRC toolsets.
- Previous experience in business development or growth of an assurance services practice.
The application window is anticipated to close on 2/1/25 and may be extended as needed.
Why work for Aprio:
Whether you are just starting out, looking to advance into management or searching for your next leadership role, Aprio offers an opportunity to grow with a future-focused, innovative firm.
Perks/Benefits we offer for full-time team members:
- Medical, Dental, and Vision Insurance on the first day of employment
- Flexible Spending Account and Dependent Care Account
- 401k with Profit Sharing
- 9+ holidays and discretionary time off structure
- Parental Leave – coverage for both primary and secondary caregivers
- Tuition Assistance Program and CPA support program with cash incentive upon completion
- Discretionary incentive compensation based on firm, group and individual performance
- Incentive compensation related to origination of new client sales
- Top rated wellness program
- Flexible working environment including remote and hybrid options
What’s in it for you:
- Working with an industry leader: Be part of a high-growth firm that is passionate for what’s next.
- An awesome culture: Thirty-one fundamental behaviors guide our culture every day ensuring we always deliver an exceptional team-member and client experience. We call it the Aprio Way. This shared mindset creates lasting relationships between team members and with clients.
- A great team: Work with a high-energy, passionate, caring and ambitious team of professionals in a collaborative culture.
- Entrepreneurship: Have the freedom to innovate and bring your ideas to help us grow to become the CPA firm of choice nationally.
- Growth opportunities: Grow professionally in an environment that fosters continuous learning and advancement.
- Competitive compensation: You will be rewarded with competitive compensation, industry-leading benefits and a flexible work environment to enjoy work/life balance.
EQUAL OPPORTUNITY EMPLOYER
Aprio is an Equal Opportunity Employer encouraging diversity in the workplace. All qualified applicants will receive consideration for employment without regard to race; color; religion; national origin; sex; pregnancy; sexual orientation; gender identity and/or expression; age; disability; genetic information, citizenship status; military service obligations or any other category protected by applicable federal, state, or local law.
