Skip to Main Content

Government Contractor Requirements (171/CMMC/FAR)

Contractors working on sensitive data with the Department of Defense (DOD) and other federal agencies must adhere to federal standards for protecting Controlled Unclassified Information (CUI).

Adhere to government contracting requirements and secure your CUI.

With deep experience in NIST SP 800-171 and as a CMMC Registered Practitioner Organization, TrustedSec can help you prepare to continue to contract within the Defense Industrial Base (DIB) and other federal agencies.

Ensure compliance by protecting sensitive data.

The Cybersecurity Maturity Model Certification (CMMC) was defined in January 2020 for any organization in the supply chain that seeks to do business with the DOD. The CMMC will become a requirement for DOD contracts. CMMC is designed to provide increased assurance to the DOD that a DIB contractor can adequately protect CUI at a level commensurate with the risk, accounting for information flow down to its subcontractors in a multi-tier supply chain. Once final CMMC rules are in place, the NIST 800-171 will remain the basis for the CMMC framework and will apply to contractors working with CUI for other federal agencies.

TrustedSec is a Registered Practitioner Organization (RPO) with several individual registered practitioners (RPs), who are trained and certified to assist organizations seeking compliance with any of the 3 levels of CMMC compliance.

  • Scope Identification & Minimization - Restrict CUI sharing across business processes and network segments
  • Control Design Assessments - Develop controls and mitigations in a way that enables your business
  • Control Effectiveness Assessments - Confirm that you are consistently executing controls

Empower your business through better security design.

Talk directly with our experienced advisory consultants to learn how we can help.