CMMC Readiness & Assessment
Relic Law offers a comprehensive CMMC readiness program to bring U.S. federal contractors of all sizes and maturities into CMMC compliance to ensure that you maintain your ability to participate in U.S. Department of Defense (DoD) and other federal contracts.
Whether your organization has an existing System Security Plan (SSP) self-audited against NIST SP 800-171 or whether you are starting from scratch, our approach will ensure that you are prepared to demonstrate your compliance with the CMMC in a realistic timeframe.
Our multidisciplinary methodology covers each of the CMMC’s 17 domains and involves addressing compliance requirements from three key disciplines:
Information Technology: Configuration and hardening of IT environment consistent with the CMMC requirements
Information Security: Deployment and operationalization of security systems and solutions as required by the CMMC
Governance and Compliance: Development of written policies and procedures supported by demonstrable evidence for each of the applicable CMMC controls (“practices”)
Our Professionals can provide as much assistance as needed, including fully-managed SSP buildouts to serving in an advisory capacity to assess and remediate critical gaps in mature security programs.
Each of our engagements is professionally staffed and managed by our team with deep industry experience in Information Security, Governance, Risk and Compliance, and the Defense Industrial Base, including in security system design and architecture, security governance, compliance, and risk management. Individual credentials include CISSP, CCSP, CISM, CISA, PMP, ITIL, and CIPP/US.
Our firm focuses on cybersecurity compliance and has applied to the CMMC-AB for approval as a Registered Provider Organization (RPO) of CMMC services. Members of our team are presently being trained as Registered Practitioners (RP). Additionally, one member of our team has sought certification as a Certified Assessor to perform preparatory audits for our clients of the most rigorous nature.
Our complete CMMC readiness program consists of 20 individual phases including diagramming and inventorying your IT environment to define boundaries, performing a structured risk assessment, vulnerability test, and compliance gap assessment, developing customized policies and procedures as the centerpiece of your SSP with supporting evidence, creating POAMs, managing remediation, and providing operational support.
To request a copy of our propriety approach to CMMC compliance and a free consultation, please complete the form above and we will respond to you shortly.
Immediate assistance is available. Initial consultations to qualified potential clients are free.
Please call us at (866) 997-4734.