BARR Advisory

Overview We are seeking an Associate Consultant (Remote) to join our Attest Services Team for our mission to build a world of trust through cybersecurity resilience. The Associate Consultant is responsible for assisting our Senior Consultants and project teams in planning and executing information technology audits, as well as managing success with client project relationships for our rapidly expanding client portfolio. As an Associate Consultant, you will be accountable for: - Support engagement leads to complete attest engagements - Document engagement files, prepare controls for documentation & review documented controls - Client satisfaction Day-to-Day Responsibilities - Support Senior Consultants with assessments, such as SOC 1, 2, 3) engagements - Manage client relationships and expectations with effective communication - Assist Senior Consultants with the preparation and review of draft reports - Assist with audit quality and assurance procedures - Utilize base knowledge of information security systems, risks, and controls - Perform other administrative duties and assist with internal initiatives as assigned Required Qualifications, Experience & Skills - 1-3 years of relevant experience in IT auditing or advisory, preferably from a large national consulting or CPA firm preferred, but not required - Bachelor’s degree in an IT-related field preferred or equivalent combination of education and experience - Experience supporting SOC audits (SOC 1, SOC 2), with the opportunity to grow into leading engagements - Experience supporting external audits, including walkthroughs, controls testing, and documentation for SOC engagements - Working knowledge and technical experience with Windows OS, Linux, AWS, GCP, Azure, and SQL Server - Exemplary time-management skills with the ability to juggle multiple projects and priorities - Must be a team player, passionate about the BARR mission, and have an innovative mindset - Must possess strong communication skills, with the ability to provide timely and effective updates to both internal BARR personnel and external BARR clients. - Ability to travel potentially up to 20% - Continuous professional development in maintaining a strong depth of knowledge in the practice area Desired Qualifications, Experience & Skills - Familiarity with tools such as GSuite, JIRA, Confluence, Slack, compliance automation, and GRC software - Certifications: At least one information security certification, such as CISSP, CISA, or CIA. Benefits & Perks - Remote-first workplace, including a work-from-home monthly stipend of $200 - Competitive salary, modern perks, and employer-paid health and wellness benefits - Monthly UberEats meal stipend - Monthly WeWork Office stipend - Generous 401k plan with employer matching - Profit Sharing Program - Client and BARR Employee Referral Program - Industry-leading Learning & Development Program - In-house manager development training program - Work-life balance, unlimited PTO, and paid company holidays - Employer matching gift program and volunteer paid time off - Fun, collaborative environment with a tight-knit team Why Work with BARR Advisory BARR Advisory specializes in meeting clients where they are, from small start-ups to global enterprises and everything in between. With the ability to customize our cybersecurity compliance and consulting services based on the individual needs of our clients, we bring a friendly and unique approach to how we serve them. As we get to know our clients, their teams, and their systems, we become true partners and trusted advisors. Our goal is to enable people around the world to trust each other. At BARR Advisory, our core values guide everything we do. Our team finds fulfillment in serving others and supporting each other, which translates into trusted client relationships. While it is a fun place to work, we solve tough problems together and collaborate to bring the highest level of quality to our clients. BARR invests in the remote culture to ensure our teams have a high level of autonomy, mastery, and purpose, along with empowerment to be their true selves. Our company is dedicated to instilling focus, discipline, and accountability throughout our organization, which is why BARR runs on EOS®. At BARR, we are proud to be an inclusive workplace, and we are committed to hiring and developing diverse talent. BARR Advisory is an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to age, race, color, religion, sex, gender identity, sexual orientation, national origin, disability status, protected veteran status, or any other characteristic protected by law. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, perform essential job functions, and receive other benefits and privileges of employment. Please contact us to request accommodation. Unfortunately, at this time, we cannot consider candidates who require sponsorship to work in the US, now or in the future. We are also not in a position to consider candidates who currently reside outside of the United States. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation. At this time, we cannot consider candidates that require sponsorship to work in the US, now or in the future. We are also not in a position to consider candidates that currently reside outside of the United States.

OVERVIEW Are you a driven leader ready to build on our attestation services and inspire your teams to excel? As a Manager of Core (Attest Services), you will be instrumental in our success, guiding and managing multi-disciplinary teams, collaborating with BARR leadership on strategic initiatives, and nurturing client relationships to ensure exceptional service delivery. You will mentor associates, instill a culture of professionalism, and leverage your expertise in SOC engagements and people management to drive meaningful results. If you thrive in adapting to new challenges, thinking creatively, and providing clear direction, this role is your opportunity to shape the future of attestation services at BARR. As a Manager, you will be accountable for: - Lead, manage, and hold direct reports accountable - Client success and identifying new opportunities - Maintaining billable hourly utilization goals - Client success (relationships, service delivery, upselling, controlling churn) DAY-TO-DAY RESPONSIBILITIES - Understand the assigned client’s business and exceed their expectations - Develop, mentor, and coach Attest team members - Deliver engagements that meet BARR expectations for quality and related professional standards (i.e., AICPA attestation standards) - Complete SOC 1 and SOC 2 readiness assessments, understanding necessary control objectives or trust services criteria, along with scoping considerations depending on the client's environment and complexity. - Support the Executive Signers in developing and refining firm methodologies for service delivery - Manage engagement financials, including budgets and profitability - Support a portfolio of clients and projects for a fast-growing business - Thoughtfully delegate projects and tasks to engagement leads and engagement consultants - Act as a point of contact and knowledgeable resource to clients and to engagement team members, and ensure they have access to the tools and resources they need to succeed - Identify and communicate training opportunities and programs that develop client service teams - Support business development activities, including managing renewal deals, cross-selling services, and serving as the relationship manager REQUIRED EXPERIENCE & QUALIFICATIONS - 5+ years of experience leading SOC 1 and SOC 2 reports - 1+ years of experience managing a team of direct reports - 1+ years of experience managing client relationships and the associated engagement scope, including cross-selling additional frameworks or expanding services within existing engagements. - Working knowledge and technical experience with cloud products such as AWS, Google Cloud Platform, and Microsoft Azure - Deep level of experience with information governance and information security strategy plans, and assessments using industry framework or regulatory directives, such as SOC reporting, ISO 27001, NIST CSF, NIST 800-53, FedRAMP, HITRUST, HIPAA, PCI DSS, or GDPR - Ability to travel potentially up to 20% - Continuous professional development in maintaining a strong depth of knowledge in the practice area - Certifications: CPA/CISA certification preferred with other designations such as CISSP, CIPP, HITRUST, ISO, QSA (or willingness to work toward one within the year) JOB PERKS & BENEFITS - Remote-first workplace, including a work-from-home monthly stipend of $200 - Competitive salary, modern perks, and employer-paid health and wellness benefits - Monthly UberEats meal stipend - Monthly WeWork Office stipend - Generous 401k plan with employer matching - Employee Performance Bonus Program - Client and BARR Employee Referral Program - Industry-leading Learning & Development Program - In-house manager development training program - Work-life balance, unlimited PTO, and paid company holidays - Employer matching gift program and volunteer paid time off - Fun, collaborative environment with a tight-knit team WHY WORK WITH BARR ADVISORY BARR Advisory specializes in meeting clients where they are, from small start-ups to global enterprises and everything in between. With the ability to customize our cybersecurity compliance and consulting services based on the individual needs of our clients, we bring a friendly and unique approach to how we serve them. As we get to know our clients, their teams, and their systems, we become true partners and trusted advisors. Our goal is to enable people around the world to trust each other. At BARR Advisory, our core values guide everything we do. Our team finds fulfillment in serving others and supporting each other, which translates into trusted client relationships. While it is a fun place to work, we solve tough problems together and collaborate to bring the highest level of quality to our clients. BARR invests in the remote culture to ensure our teams have a high level of autonomy, mastery, and purpose, along with empowerment to be their true selves. Our company is dedicated to instilling focus, discipline, and accountability throughout our organization, which is why BARR runs on EOS®. At BARR, we are proud to be an inclusive workplace, and we are committed to hiring and developing diverse talent. BARR Advisory is an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to age, race, color, religion, sex, gender identity, sexual orientation, national origin, disability status, protected veteran status, or any other characteristic protected by law. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, perform essential job functions, and receive other benefits and privileges of employment. Please contact us to request accommodation. Unfortunately, at this time, we cannot consider candidates who require sponsorship to work in the US, now or in the future. We are also not in a position to consider candidates who currently reside outside of the United States. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation. At this time, we cannot consider candidates that require sponsorship to work in the US, now or in the future. We are also not in a position to consider candidates who currently reside outside of the United States.

About the role We are seeking a Senior Consultant (Remote) to join our Attest Services Team for our mission to help innovative technology and cloud service providers simplify the path to security and compliance. The Senior Consultant is responsible for planning, executing, and leading information technology audits, mentoring new associates, and client & project relationship management for our rapidly expanding client portfolio. Senior Accountability - Meeting deployment targets - Engagement delivery (planning to post-report debriefs) - Support associates/interns on engagements - Development of associates - Client satisfaction Desired Experience & Qualifications - Bachelor’s degree in an IT-related field preferred or equivalent combination of education and experience - 2+ years of relevant experience in IT auditing or advisory, preferably from a large national consulting or CPA firm - 2+ years of experience leading SOC audits (SOC 1, SOC 2, SOC 3) - Experience with external audits, walkthroughs, controls testing and documentation for SOC engagements - Experience training and supervising audit staff on SOC engagements - Working knowledge and technical experience with Windows OS, Linux, AWS, GCP, Azure, and SQL Server - Familiarity with tools, such as GSuite, JIRA, Confluence, Slack, compliance automation and GRC software - Excellent interpersonal, written and verbal communication skills - Exemplary time-management skills with the ability to juggle multiple projects and priorities - Must be a team player, passionate about the BARR mission, and have an innovative mindset - Industry certification preferred (CPA, CISA, ISO Lead Auditor, HITRUST CCSFP, PCI QSA) - Ability to travel potentially up to 20% Job Perks & Benefits - Remote-first workplace, including a work-from-home monthly stipend of $200 - Competitive salary, modern perks, and employer-paid health and wellness benefits - Monthly UberEats meal stipend - Monthly WeWork Office stipend - Generous 401k plan with employer matching - Profit Sharing Program - Work-life balance, unlimited PTO, and paid company holidays - Employer matching gift program and volunteer paid time off - Fun, collaborative environment with a tight-knit team Diversity Statement At BARR, we are proud to be an inclusive workplace and committed to hiring and developing diverse talent. BARR Advisory is an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to age, race, color, religion, sex, gender identity, sexual orientation, national origin, disability status, protected veteran status, or any other characteristic protected by law. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, perform essential job functions, and receive other benefits and privileges of employment. Please contact us to request accommodation. At this time, we cannot consider candidates that require sponsorship to work in the US, now or in the future. We are also not in a position to consider candidates that currently reside outside of the United States.

This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description BARR is seeking a part-time contractor to join as the Lead CMMC Certified Assessor (CCA) for our growing CMMC service line. This role offers a unique opportunity to be involved from the outset of our journey towards becoming a C3PAO, with anticipated engagement work starting in 2026. Pending business needs, there's potential for this position to transition to full-time. - Lead and oversee dedicated Assessment Teams for CMMC Level 2 certification assessments on behalf of the C3PAO. - Act as the primary liaison with organizations seeking certification (OSCs), ensuring all assessment activities adhere to CMMC-AB and CAICO requirements. - Ensure assessment integrity and consistency by providing leadership, oversight, and quality assurance across multiple assessment engagements. - Verify adherence to CMMC methodology, guiding Assessment Teams in scoping, evidence collection, and scoring procedures. - Coordinate with CAICO and stakeholders to meet formal designation requirements, submit documentation, and maintain compliance with CMMC assessment protocols. - Utilize industry expertise to train CCAs and other CMMC team members. - Assist the CMMC leadership team in scoping validation, engagement pricing, and resource management. - Provide regular updates to the BARR CMMC Leadership team on engagement status. Qualifications - Lead CMMC Certified Assessor (LCCA) designation by the CyberAB. - United States citizenship required. - Ability to travel approximately 25-35%. - Active DoD Secret Clearance or ability to obtain one. - 8+ years of cybersecurity experience, including 5+ years in managerial roles and 3+ years in CMMC assessments. - Experience with large government contractors and effective communication with executive leadership. - Hold one (1) or more of the following active certifications: - CISM - CISSO - CPTE - CompTIA CySA+ - FITSP-A - GCSA - CISA - CISSP - CISSP-ISSEP - GSLC - GSNA Requirements - Manage assigned Assessment Teams, ensuring roles are defined, daily coordination is effective, and assessors comply with CMMC Assessment Process (CAP) and NIST SP 800-171A. - Oversee evidence collection and validation to ensure objectivity, consistency, and compliance. - Review and approve assessment findings, including preliminary and final scoring, and ensure accurate documentation submission. - Coordinate assessment schedules, logistics, interviews, site visits, and secure information handling. - Participate in post-assessment reviews and continuous improvement efforts, providing feedback to refine internal assessment procedures. Desired Qualifications & Skills - Additional experience with cloud platforms (AWS, Azure, GCP). - Strong leadership, team management, problem-solving, and communication skills. - Deep knowledge of CMMC model, assessment processes, NIST standards, and DFARS requirements. Benefits - BARR Advisory specializes in meeting clients where they are, from small start-ups to global enterprises and everything in between. - Ability to customize cybersecurity compliance and consulting services based on individual client needs. - Focus on building trusted client relationships through partnership and support. - Commitment to a remote culture that ensures autonomy, mastery, and purpose. - Inclusive workplace dedicated to hiring and developing diverse talent. - Equal opportunity employer with a commitment to reasonable accommodations for individuals with disabilities.