Note: Important Change as of November 2021
The Department of Defense announced a major overhaul to the Cybersecurity Maturity Model Certification (CMMC) program. No new contracts will feature CMMC compliance requirements until the Department completes its rulemaking process for CMMC 2.0. Read our summary of the changes, Goodbye CMMC 1.0, Hello CMMC 2.0. For more detailed information, visit the CMMC website.

Keiter’s Cybersecurity team will continue to monitor the rollout of the CMMC program and update you on new information and changing requirements for DoD contractors.

CMMC Compliance

Seattle, Tacoma and other Washington Department of Defense (DoD) contractors and subcontractors will soon be required to comply with the new Cybersecurity Maturity Model Certification (CMMC) standard. The new standard is designed to help counteract the significant increase in the compromises of sensitive defense information which is shared across the defense industrial base.

In the past, DoD contractors have been responsible for maintaining certain cybersecurity practices, but under the emerging CMMC requirements contractors must undergo third-party compliance assessments and implement additional security protections. Once implemented contractors and subcontractors will need to be compliant to be awarded contract work.

5 CMMC Maturity Levels (ML)

Phased in over a five-year period, CMMC includes 5 maturity levels based on a Washington DoD contractor’s access to Federal Contract Information (FCI) and Controlled Unclassified Information (CUI).

CMMC ML 1, known as basic cyber hygiene, requires the use of techniques such as antivirus and passwords to control access to FCI. The requirements become more complex reaching a Level 5, Optimizing, which requires standardized processes to address Advanced Persistent Threats (APT).

Washington Top DoD Spending Locations

Seattle CMMC Services

Many Seattle DoD contractors will need assistance performing initial assessments to uncover issues, establish corrective actions, and to chart a path towards CMMC readiness.

The CMMC is complex. ML 3 contains 381 discrete cybersecurity requirements spread among 130 practices, and 310 policy/procedure requirements spread among 51process maturity requirements. The requirements are complex, and our team has almost 20 years of experience providing cybersecurity compliance services across many complex frameworks such as NIST SP 800-171, NIST SP 800-53, HIPAA, and others. As a CMMC Registered Provider Organization (RPO), our team can help DoD prime and subcontractors with the following:

  • Readiness Assessments and Gap Analyses Against the CMMC Framework
  • Assistance with Remediating Gaps Identified during Readiness Assessment
  • Assistance with NIST SP 800-171 Self-Assessment that is recorded in Supplier Performance Risk System
  • Creating System Security Plans (SSP)
  • Creating Plans of Action and Milestones (POA&M)
About Seattle (WA)

Seattle, Washington, often referred to as the “Emerald City” or the “Gateway to the Pacific Northwest,” is a dynamic and vibrant city located in the western part of the United States. Situated between the rugged Olympic Mountains and the sparkling waters of Puget Sound, it is known for its natural beauty, thriving tech industry, and rich cultural scene. Here’s a narrative about Seattle, WA:

Nestled amidst lush green landscapes and surrounded by the majesty of the Pacific Northwest, Seattle captivates with its unique blend of urban charm and natural wonders. From its humble beginnings as a logging outpost to its current status as a global center of technology and innovation, the city’s story is one of resilience, creativity, and a deep connection to its surroundings.

Seattle’s history is interwoven with the traditions of the Native American tribes who first inhabited the region. The Duwamish, Suquamish, and other tribes have long held a spiritual and cultural connection to the land that now bears the name Seattle. The city pays homage to this heritage, with totem poles, art, and cultural events that celebrate the contributions of the indigenous communities.

Contact Our CMMC Team

Keiter provides CMMC readiness assessments and remediation services to DoD contractors across Washington including in Seattle and Tacoma. If you are interested in learning how we can assist your organization, complete the form below and a team member will follow up promptly.

"*" indicates required fields

We'll never share your email with anyone else.
This field is for validation purposes and should be left unchanged.

 

Contact Us