As a Senior Associate in Information Assurance Services, you'll lead client meetings, test security controls, and perform information risk assessments across various industries.
Work with a nationally ranked CPA and advisory firm that is passionate for what's next. Aprio has 30 U.S. office locations, one in the Philippines and more than 2,100 team members that speak 60+ languages across the globe. By bringing together proven expertise, deep understanding, and strategic foresight for fast-growing industries, Aprio ensures clients are prepared for wherever life or business may take them. Discover a top-rated culture, vast growth opportunities and your next big career move with Aprio.
Join Aprio's Information Assurance Services team and you will help clients maximize their opportunities. Aprio is a progressive, fast-growing firm looking for a Senior Associate to join their dynamic team.
Aprio's Information Assurance practice supports the delivery of attestation and consulting services for multiple clients in data and tech-based industries such as credit reporting and analytics, payment card services, healthcare IT, and cloud services. The business model and methodologies are focused on risk management and adding value to clients in all services provided. Aprio’s IAS group utilizes sound business practices and technical expertise (rather than working off checklists) to enable clients to identify, mitigate, and monitor the most technical risks associated with their technology use.
Position Summary
Aprio is seeking a CMMC Certified Professional (CCP) to join our Information Assurance Services (IAS) practice as a Senior Associate. This role is focused on providing assistance during formal CMMC Level 2 assessments and readiness consulting services to clients within the Defense Industrial Base (DIB), helping them prepare for CMMC compliance with NIST SP 800-171 Rev. 2 requirements.
This is an ideal position for someone with a technical risk background, audit experience, and hands-on knowledge of NIST-based cybersecurity frameworks. You will play a key role in providing assistance during assessments, guiding remediation efforts, and supporting overall cybersecurity posture improvements.
Responsibilities:
- Client Service:
- Assist in conducting CMMC Level 2 assessments in accordance with the CMMC Assessment Process (CAP)
- Deliver CMMC readiness engagements, including control gap assessments and evidence review
- Evaluate and test client implementations against NIST SP 800-171 controlsin accordance with the CMMC program
- Provide expert guidance to clients preparing for formal certification or self-assessment
- Review documentation, perform interviews, and validate technical configurations for adequacy and sufficiency
- Document and communicate findings through detailed reports, briefings, and walkthroughs
- Internal and Development:
- Collaborate with team members to develop internal methodologies for CMMC
- Support the creation of processes and templates for client engagements
- Sales and Marketing:
- Support business development efforts by participating in discovery calls, client scoping, and proposal creation
- Serve as a subject matter expert in CMMC, NIST SP 800-171, and related DoD compliance programs
Qualifications:
- Required:
- Active or in progress CMMC Certified Professional (CCP) certification
- CompTIA Security+ (or equivalent DoD 8140Intermediate Certifications)
- Minimum 2 years of experience with NIST SP 800-171 assessments or implementation
- Experience supporting clients in regulated industries, particularly the DIB
- Excellent communication and documentation skills, including writing audit reports
- Strong understanding of cybersecurity risk management principles and control testing
- Willingness to travel up to 30%
- Preferred:
- CMMC Certified Assessor (CCA)
- CISSP, CISA, CISM, or otherDoD 8140 advanced security certifications
- Familiarity with frameworks including FedRAMP, ISO 27001, and NIST CSF
- Prior experience working for aC3PAO, 3PAO or in a government contracting environment
- Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, or related field
What We Offer
- Opportunity to work with a nationally recognized cybersecurity team and cutting-edge clients
- Continued training and development support for higher-level certifications and advancement
- Culture of mentorship, innovation, and teamwork
The application window is anticipated to close on August 21st and may be extended as needed.
Why work for Aprio:
Whether you are just starting out, looking to advance into management or searching for your next leadership role, Aprio offers an opportunity to grow with a future-focused, innovative firm.
Perks/Benefits we offer for full-time team members:
- Medical, Dental, and Vision Insurance on the first day of employment
- Flexible Spending Account and Dependent Care Account
- 401k with Profit Sharing
- 9+ holidays and discretionary time off structure
- Parental Leave – coverage for both primary and secondary caregivers
- Tuition Assistance Program and CPA support program with cash incentive upon completion
- Discretionary incentive compensation based on firm, group and individual performance
- Incentive compensation related to origination of new client sales
- Top rated wellness program
- Flexible working environment including remote and hybrid options
What’s in it for you:
- Working with an industry leader: Be part of a high-growth firm that is passionate for what’s next.
- An awesome culture: Thirty-one fundamental behaviors guide our culture every day ensuring we always deliver an exceptional team-member and client experience. We call it the Aprio Way. This shared mindset creates lasting relationships between team members and with clients.
- A great team: Work with a high-energy, passionate, caring and ambitious team of professionals in a collaborative culture.
- Entrepreneurship: Have the freedom to innovate and bring your ideas to help us grow to become the CPA firm of choice nationally.
- Growth opportunities: Grow professionally in an environment that fosters continuous learning and advancement.
- Competitive compensation: You will be rewarded with competitive compensation, industry-leading benefits and a flexible work environment to enjoy work/life balance.
EQUAL OPPORTUNITY EMPLOYER
Aprio is an Equal Opportunity Employer encouraging diversity in the workplace. All qualified applicants will receive consideration for employment without regard to race; color; religion; national origin; sex; pregnancy; sexual orientation; gender identity and/or expression; age; disability; genetic information, citizenship status; military service obligations or any other category protected by applicable federal, state, or local law.
Aprio, LLP and Aprio Advisory Group, LLC, operate in an alternative business structure, with Aprio Advisory Group, LLC providing non-attest tax and consulting services, and Aprio, LLP providing CPA firm services.
Top Skills
Gdpr
Hitrust
Information Technology Frameworks
Iso 27001
Nist Csf
Pci Dss
Soc Reporting
Similar Jobs
Financial Services
As a Principal Cybersecurity Architect, you'll safeguard AI/ML initiatives, advise on technology adoption, develop security standards, and mentor teams.
Top Skills:
AIMachine LearningPublic CloudStride
Big Data • Cloud • Fintech • Information Technology • Financial Services
Design and maintain Identity Management solutions using SailPoint IdentityIQ while managing access controls and custom integrations, utilizing Agile methodologies.
Top Skills:
BeanshellForgerock Identity SuiteJavaOauth2.0OidcOktaPingidSailpoint IdentityiqSAMLSQLXML
Big Data • Cloud • Fintech • Information Technology • Financial Services
The Associate Principal, Security Engineering is responsible for leading application security initiatives, improving SDLC processes, conducting security assessments, and automating security checks within CI/CD pipelines.
Top Skills:
AWSAzureBashC++DockerGCPGitJenkinsKubernetesPowershellPythonSvnTerraform
What you need to know about the Colorado Tech Scene
With a business-friendly climate and research universities like CU Boulder and Colorado State, Colorado has made a name for itself as a startup ecosystem. The state boasts a skilled workforce and high quality of life thanks to its affordable housing, vibrant cultural scene and unparalleled opportunities for outdoor recreation. Colorado is also home to the National Renewable Energy Laboratory, helping cement its status as a hub for renewable energy innovation.
Key Facts About Colorado Tech
- Number of Tech Workers: 260,000; 8.5% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Lockheed Martin, Century Link, Comcast, BAE Systems, Level 3
- Key Industries: Software, artificial intelligence, aerospace, e-commerce, fintech, healthtech
- Funding Landscape: $4.9 billion in VC funding in 2024 (Pitchbook)
- Notable Investors: Access Venture Partners, Ridgeline Ventures, Techstars, Blackhorn Ventures
- Research Centers and Universities: Colorado School of Mines, University of Colorado Boulder, University of Denver, Colorado State University, Mesa Laboratory, Space Science Institute, National Center for Atmospheric Research, National Renewable Energy Laboratory, Gottlieb Institute
