The U. S. Department of Defense developed the Cybersecurity Maturity Model Certification to assess existing NIST SP 800-171 requirements and define the process for implementing cybersecurity standards for subcontractors. If you’re unsure about what is required to meet CMMC compliance, Arizona MEP has developed a simplified process to assess gaps and implement IT projects to meet compliance requirements.
How Arizona MEP Can Help
We offer three main areas of support to prepare you for third-party certification.
1. Gap Assessment
Arizona MEP will meet with you to understand your needs and provide a proposal to perform a gap assessment using the 110 NIST SP 800-171 controls. This gap assessment will include the following deliverables:
- System Security Plan (SSP)
- Supplier Performance Risk System (SPRS) Score
- Draft Plan of Action & Milestones (POA&M)
- Executive Summary – findings and next steps
2. Implementation Support
Depending on your needs and budget, Arizona MEP can help you prioritize tasks necessary to close the gaps identified in the gap assessment. Working with your project management team and internal and/or external IT teams, we will provide the necessary policy and procedural templates and assist with overall communication. During this phase, our deliverables include:
- Prioritization of IT project tasks
- Templates used for policies and procedures
- Assistance in updating POA&M
- Final review of task
3. IT Project Support
Finally, Arizona MEP can assist you in completing the necessary IT projects to become NIST SP 800-171 compliant. These projects may be individual projects that your current IT team cannot complete, or we can help to close IT project gaps, including Security Operations Center (SOC) setup. We can also assist in implementing an IT Help Desk solution through a Managed Service Provider (MSP) that can oversee and manage all of your IT needs. IT project support can include the following deliverables:
- Providing IT project services
- Providing SOC services
- Providing Managed Service Provider (MSP) resources
Arizona MEP is Your Go-to Partner for CMMC Compliance
Don't be overwhelmed with CMMC compliance, Arizona MEP has developed a program that provides straightforward guidance to help you avoid delays and costly mistakes. You can contact Arizona MEP at (602) 845-1256 or [email protected] to speak with a Client Advisor about your needs. At our April 3 event, CMMC Compliance: Building a Roadmap—Prepare Your Company for Compliance Today, we’ll deliver hands-on planning activities to help you understand the requirements and set a game plan for compliance—Register today to get started on CMMC compliance!