Cybriant announces a new service for Department of Defense contractors in regards to the upcoming Cybersecurity Maturity Model Certification (CMMC).
Cybriant, a leader in cybersecurity services, today announced a new service to prepare Department of Defense contractors for the upcoming Cybersecurity Maturity Model Certification (CMMC).
Beginning in the fall of 2020, CMMC compliance will be a prerequisite for all new contracts including prime and subcontractor for the Department of Defense. Any contractor storing or transmitting controlled unclassified information (CUI) will need to achieve Level 3 compliance.
The Department of Defense has defined 5 levels of CMMC compliance, each with a set of supporting practices and processes. To meet a specific level, each contractor must meet the practices and processes within that level and below. The Department of Defense has released the following descriptions of each level of CMMC:
Level 1: Basic Cybersecurity
Level 2: Inclusive of universally accepted cybersecurity best practices
Level 3: Coverage of all NIST 800-171 rev 1 controls
Level 4: Advanced and sophisticated cybersecurity practices
Level 5: Highly advanced cybersecurity practices
Cybriant is aligned with the new CMMC guidelines and is knowledgeable of all the latest updates concerning CMMC. Our services are mapped to fully account for CMMC requirements levels 1 through 5 and can assist with CMMC certification efforts.
With the coming mandate of CMMC, many companies may be struggling to address the various requirements within the model. Many things have changed between the current standard NIST SP 800-171r1 and CMMC which will require a great deal of work for current contractors.
Cybriant can enable contractors to bridge the gap of missing security controls to help them quickly and efficiently become compliant. Contractors can rely on Cybriant’s strategic and managed services to ensure their security and satisfy CMMC compliance requirements.
While the CMMC Accreditation Board-Certified Auditors is pre-launch, Cybriant has taken the necessary steps to become a Third-Party Assessment Organization (3CPAO) when the program becomes functional in order to assist contractors’ preparation for the upcoming audits.
“CMMC is still in flux and there is a great deal of misinformation,” said Jason Hill, Director of Strategic Services. “Cybriant can provide guidance and operational resources to demystify the preparation process and ultimately achieve CMMC certification.”
For more information on the services provided by Cybriant, please go to https://cybriant.com/cmmc/.
Cybriant assists companies in making informed business decisions and sustaining effectiveness in the design, operation, and monitoring of their cyber risk management programs. We deliver a comprehensive and customizable set of strategic and managed cybersecurity services. These services include Risk Assessments, vCISO, 24/7 Managed SIEM with LIVE Monitoring and Analysis, 24/7 MDR, 24/7 Vulnerability Scanning with Patch Management. We make enterprise-grade cyber security strategies and tactics accessible to businesses of all sizes. Find out more at https://www.cybriant.com.