Independent analyst firms have weighed in with commentary on nearly every discipline of information technology. Security has garnered a large portion of that IT discussion, yet until recently, Cybersecurity Maturity Model Certification (CMMC) compliance has been left out.
Frost & Sullivan changed that by selecting CyberSheath as its preferred managed service provider for CMMC compliance, highlighting the importance of security in the Defense Industrial Base (DIB) amid growing global threats.
The recommendation comes as the Department of Defense (DOD) prepares to codify CMMC 2.0 in Spring 2023 and contractors in the DIB will soon need to achieve compliance. New research shows that the DIB isn’t even close.
A 110 Supplier Performance Risk System (SPRS) score — the metric that shows how well a contractor meets Defense Federal Acquisition Regulation Supplement (DFARS) requirements — is required by law. Critics of the system have anecdotally deemed 70 to be “good enough,” but data from Merrill Research shows that a shocking 87% of contractors can’t even meet that bar.
Given the tight timelines, the incredible expense of achieving compliance internally, and the constantly evolving and increasing security requirements, Frost & Sullivan have concluded that organizations in the DIB shouldn’t go it alone.
“This recognition is validation of our approach to CMMC compliance,” said Eric Noonan, Co-Founder and CEO at CyberSheath. “We have prided ourselves on helping organizations reduce their risk and better protect our national security secrets. Many of these contractors haven’t had to consider cybersecurity before, and we walk them through the compliance process rather than offering them some technical tool they don’t know how to use.”
Read Frost & Sullivan’s complete whitepaper, Securing the Defense Industrial Base in the Cyber Domain. Learn more about actionable steps you can take to be ready for CMMC 2.0 by registering for CyberSheath’s webinar on Jan. 25 at noon EST.