CYBER COMPLIANCE MADE EASY
COMPLIANCE WITHOUT COMPLEXITY®
Ready for your eyes to glaze over? Neither are we. And you won't need to burden yourself with the complexity of compliance, because that's our job. We've got you covered - from assessment, to development of the Plan of Actions and Milestones (POAM), to the documentation that prepares you for the upcoming Cybersecurity Maturity Model Certification (CMMC).
We not only provide assessment, security, and protection from cybersecurity threats for small and medium-sized businesses, we also offer you Compliance Without Complexity®. Our customized, cost-effective, turnkey program helps you manage and maintain your cybersecurity for years to come.
Would you like an audit to assess your cybersecurity vulnerabilities and deficiencies? Want help developing and executing a POAM to address those needs? How about developing and submitting documentation for securing compliance, or even helping you achieve new levels of compliance that can open doors to more business? We handle it all.
And we only require a minimal amount of your time to do so. Which means you can keep your eye on what you do best.
Using the NIST SP 800-171 framework for our Basic Assessments, we provide guidelines, technical specifications, recommendations, and annual reports to help keep your information safe.
Apply lessons learned within the assessment to build a plan and develop policy and procedure processes to strengthen your security footprint.
Our Services Include
- Joint Surveillance Voluntary Assessments - CMMC Assessments to meet DIBCAC High and eventually translate to CMMC Level 2 (see Cyber AB launches voluntary CMMC assessment program for defense contractors – FedScoop)
- CMMC Pre-Assessment Readiness Reviews for Level 1 and Level 2
- DFARS 252.204-7012, 7019 and 7020 compliance assessments
- Basic Assessments against NIST 800-171
- CMMC Readiness Journey, consulting services to get your company compliant to NIST 800-171
- CMMC Consultant Services – Set projects or hourly services
- Managed Compliance Services – Protecting companies by providing management and compliance support services with annual audits and security-focused services.
What is NIST SP 800-171?
The National Institute of Standards and Technology (NIST) SP 800-171 is a business-oriented cybersecurity standard that provides guidelines, technical specifications, recommendations and annual reports to help keep business information safe.
This standard became a requirement in January 2018 for companies working with Controlled Unclassified Information (CUI) anywhere along the Department of Defense (DoD) supply chain. DoD affiliates that fail to reach compliance risk losing their federal contracts.
NIST SP 800-171 compliance is also highly recommended for businesses unaffiliated with the DoD. Failure to meet these standards increases vulnerability to cyber attacks, which can severely damage or even destroy a business.
We work with many businesses to help them with their IT & OT Cybersecurity, Insurance Security Due Diligence and basic cybersecurity assessments.
What is CMMC?
The Cybersecurity Maturity Model Certification (CMMC) was introduced by the United States Department of Defense (DoD) in January 2020 in order to assess and enhance the cybersecurity posture of the Defense Industrial Base (DIB) and ensure that appropriate levels of cybersecurity practices and processes are in place to protect the Controlled Unclassified Information (CUI) that resides on the DoD's industry partners’ networks.