CMMC Readiness Newport News VA | Newport News (VA) 23601

CMMC Compliance – Newport News (VA)

Newport News and Virginia Department of Defense (DoD) contractors and subcontractors will soon be required to comply with the new Cybersecurity Maturity Model Certification (CMMC) 2.0 requirements. The CMMC program is intended to better enforce cybersecurity requirements across the defense industrial base (DIrB) to better protect Federal Contract Information (FCI) and Controlled Unclassified Information (CUI).

Three CMMC Maturity Levels (ML)

Once implemented, DoD contract solicitations will indicate the required maturity level for the winning contractor. If a contractor does not have the appropriate certification in the DoD’s Supplier Performance Risk System (SPRS), then the contractor will be ineligible for contract award.

CMMC Level 1 will be added to contracts where FCI only will be received or generated by the contractor. Level 1 will require organizations to annually self-assess and affirm their compliance with the 17 Level 1 practice requirements, which are composed of 59 assessment objectives.

CMMC Level 2 requires a triennial third-party assessment and annual affirmation of compliance with 110 practice requirements, which are composed of 320 assessment objectives. Level 2 also expands the type of information system assets that are in scope for assessment, compared to Level 1.

CMMC Level 3 requires an existing Level 2 certification, and contractors will be assessed by the DoD for compliance against an additional 24 practice requirements. Level 3 also expands the type of information system assets that are in scope for assessment, compared to Level 2.

Readiness Preparation

By most estimates, organizations are likely to require 12-18 months to prepare for a Level 2 assessment. With the CMMC final rule likely taking effect during the first half of 2025, Virginia DoD contractors who wish to participate on new DoD contracts should start preparing as soon as possible.

Virginia Top DoD Spending Locations

Virginia CMMC Services

Many Newport News DoD contractors need assistance performing initial assessments to uncover issues and establish corrective actions. Our team has almost 20 years of experience providing cybersecurity on major frameworks such as NIST SP 800-171, NIST SP 800-53, HIPAA, and others. As CMMC RPO, our team can help DoD prime and subcontractors with the following:

Readiness Assessments and Gap Analyses Against the CMMC Framework
Assistance with Remediating Gaps Identified during Readiness Assessment
Assistance with NIST SIP 800-171 Self-Assessment that is recorded in Supplier Performance Risk System

CMMC Readiness: De-Risk Your Compliance

Security Compliance = Secure Client Base

Scott McAuliffe and Chris Moschella provide an overview of the CMMC requirements and share readiness strategies that can help you reduce noncompliance risk, regardless of where you are in your readiness process.

December 18th, 2024 Webinar Recording

Contact Our CMMC Team

Keiter provides CMMC readiness assessments and remediation services to DoD contractors across Newport News and the State of Virginia. If you are interested in learning how we can assist your organization, complete the form below and a team member will follow up promptly.

"*" indicates required fields

About Virginia’s DoD Contractors

Virginia’s Department of Defense (DOD) contractors are critical components of the state’s role in national security and technological advancement. The state is home to a robust and diverse community of defense contractors, specializing in various fields such as aerospace, technology, cybersecurity, and advanced manufacturing.

These contractors collaborate closely with DOD agencies and military installations, including the Pentagon, Naval Station Norfolk, and Fort Belvoir. They are at the forefront of developing cutting-edge defense technologies and solutions, contributing significantly to the nation’s defense capabilities.

Virginia’s DOD contractors also significantly impact the state by creating jobs and fostering innovation. Their commitment to excellence and partnership with the military ensure that the United States remains a leader in military technology and readiness. Virginia’s defense contractors play a pivotal role in supporting national defense efforts while driving economic growth and technological advancement within the state. The area codes used in Newport News (VA) are 757 and 948.

National Reach

We also provide CMMC services to Department of Defense Contractors in Alabama, Arizona, Colorado, Florida, Hawaii, Illinois, Mississippi, New Hampshire, Pennsylvania, New Jersey, Maine, Rhode Island, Massachusetts, New York, North Carolina, South Carolina, Texas, Vermont, the State of Washington, and Washington D.C.

CMMC Readiness – Newport News (VA)