NIST Assessments &
Protecting US Government Supply Chains
Meet Security Mandates
US defense and government suppliers need to meet certain security mandates, depending on the contract under which they are working or bidding. Impacted organizations include subcontractors working for prime contractors or other subcontractors. Corserva provides consulting services to identify gaps in security within your organization. Once problems have been identified, we can also perform remediation services to correct security issues and enhance your security posture.
- NIST 800-171
- Cybersecurity Maturity Model Certification (CMMC)
Corserva offers NIST assessments for US defense suppliers and subcontractors who need to comply with the NIST 800-171 mandate. To be eligible to participate in DoD contracts, suppliers provide evidence of compliance with NIST 800-171 to the subcontractor or prime contractor with whom they are working. This evidence can include formal documents such as System Security Plans (SSP) and Plans of Actions with Milestones (POA&M). In addition to performing NIST assessments, Corserva can create the required documents for the supplier and perform any required remediation identified during an assessment
The Cybersecurity Maturity Model Certification (CMMC) is a unified cybersecurity standard created to increase the security posture of companies operating in government supply chains. The Department of Defense is gradually transitioning from the NIST 800-171 mandate to the CMMC framework. Corserva is a CMMC-AB Registered Provider Organization™ (RPO) and we are listed on the CMMC-AB Marketplace.
As an RPO, Corserva is authorized by the CMMC-AB to provide pre-assessment consulting services to government contractors and other Organizations Seeking Certification (OSC).
Corserva can advise companies in their preparation for a CMMC assessment. Corserva is a CMMC-AB Registered Provider Organization™ (RPO) and we are listed on the CMMC-AB Marketplace. As an RPO, Corserva is authorized by the CMMC-AB to provide pre-assessment consulting services to government contractors and other Organizations Seeking Certification (OSC).
An Easy Process For CMMC Readiness
Corserva has created an easy process to enable you to prepare for CMMC and protect your government contracts. To prepare you for CMMC, these are the steps we follow:
Choose Engineers, Not Accountants
Many companies providing compliance services have a financial accounting background instead of an IT background. You gain an advantage when leveraging the services of Corserva because we have the experience to make specific technology recommendations. This translates to cost savings for you since we can guide you in how to remediate issues identified in the most cost-effective way possible. In contrast to financial auditors, Corserva also has the expertise to provide follow-up services, including:
- Technical remediation of network gaps and system gaps
- Development of Policies & Procedures documentation
- Creation of SSPs and POA&Ms
- Customized security programs