Cybersecurity Maturity Model Certification
Sikich has the necessary expertise to assist the U.S. Defense Industrial Base (DIB) sector in enhancing it’s cybersecurity posture within the multi-tier supply chain to ensure compliance with Cybersecurity Maturity Model Certification (CMMC) requirements.
About the Cybersecurity Maturity model certification (CMMC)
The CMMC is a new cybersecurity requirement for protecting controlled unclassified information, applicable to all defense contractors. The CMMC will require a level of cybersecurity maturity based on the risk rating of the contract with the Department of Defense (DoD).
We support government accountability and assist our clients in ensuring that taxpayer money and data are properly handled. By validating and questioning our clients’ documentation, we help to establish that funds and systems are being used appropriately and purposefully.
Learn More
We provide financial management, advisory and assurance services to support a wide range of federal and commercial clients.
Sikich’s Federal Audit services team includes financial management and information assurance professionals who specializing in providing audit and attestation services.
Sikich offers comprehensive, cost-effective solutions tailored to help your organization reduce the risk of fraud to an acceptable level. Since every organization is unique, we can work with you to provide the right mix of services.
Sikich has valuable deposition and trial testimony experience. Partners have been qualified as experts in such topics as government contract accounting, contract claims analysis, audits of procurement procedures, and application of the Federal Acquisition Regulation (FAR).
Sikich has the necessary expertise to assist the U.S. Defense Industrial Base (DIB) sector in enhancing its cybersecurity posture within the multi-tier supply chain to ensure compliance with Cybersecurity Maturity Model Certification (CMMC) requirements.
CMMC Mission Statement
The CMMC is intended to serve as a verification mechanism to ensure appropriate levels of cybersecurity practices and processes are in place to ensure basic cyber hygiene as well as protect controlled unclassified information (CUI) that resides on the Department’s industry partners’ networks.
Source: https://www.acq.osd.mil/cmmc
CMMC Services
Advisory SERVICES
- To achieve CMMC certification, DIB partners and contractors must assess the as-is and to-be states of their cybersecurity environment to gauge their current level of information security, identify and track risks more effectively, and prioritize information security and system procurement needs.
- Cotton performs pre-assessments to assist our clients in identifying corrective actions related to CMMC and implementing the required cybersecurity controls.
Assist clients in implementing new requirements, including developing policies and procedures and acting as a liaison between client management and their selected Certified Third Party Assessor Organization (C3PAO).
Contact:
Gary Barton, Partner
gary.barton@sikich.com
ASSURANCE SERVICES
Sikich is now a certified Third Party Assessor Organization (C3PAO) candidate. We are following the CMMC Accreditation Body processes to become an authorized C3PAO to be able to perform assessments for organizations seeking certification (OSC). We are currently ready and able to assist DIB partners and contractors with their CMMC readiness efforts.
Contact:
Loren Schwartz, Partner
loren.schwartz@sikich.com
