As cybersecurity threats increase in intensity and impact, it has become even more important for businesses like Cask to take a proactive stance. Earlier this year, the U.S. Department of Defense (DoD) with many volunteers from the CCMC Accreditation Body, began building the Cybersecurity Maturity Model Certification (CMMC) ecosystem, in which companies must demonstrate additional compliance measures if handling FCI or CUI data in order to work with DoD.
“As a government contractor we already comply with the 110 NIST 800-171, but CMMC adds in 20 additional controls or practices for Maturity Level 3 – we hope to be one of the first to be certified at this level once the program is up and running,” adds Stacy High-Brinkley, Associate Director of Cyber.
The CMMC includes five maturity levels (see chart below) that reflect the reliability of a company’s cybersecurity infrastructure to safeguard sensitive government information that a contractor stores, transmits or receives. The five levels are tiered and build upon each other’s technical requirements. Each level requires compliance with the lower-level requirements and the processes in place to implement specific cybersecurity-based practices.
Cask applied to become a C3PAO and Stacy High-Brinkley was accepted into the Provisional Assessor Training Program, and recently passed her exam to become one of the first certified Provisional Assessors.
Contact Cask for a CMMC pre-assessment. Cask is a government contracting firm based in Stafford, VA, delivering business and technology advisory and consulting services to help our customers achieve success. Founded in 2004, Cask saw the need to help clients use and unlock the value of technology in more efficient and cost effective ways. Cask consultants consider the bigger picture and determine how greater value can be created by aligning IT strategy with the overall mission strategy.
Through its four pillar IT Strategy and Consulting Framework, Cask helps produce IT staff, services, processes and assets that are aligned to your organization’s mission. The alignment results in greater IT cost savings, more efficient processes, more return on the IT investment, and more effective IT staff.