Latest news with #C3PAO
Globe and Mail
6 hours ago
- Business
- Globe and Mail
Maximus Achieves Cybersecurity Maturity Model Certification (CMMC) Level 2
Maximus (NYSE: MMS), a leading technology company and provider of government services, announced it achieved Cybersecurity Maturity Model Certification (CMMC) Level 2 confirming the company's ability to secure national defense data and meet stringent Department of Defense (DoD) cyber mandates. Maximus secured this certification through a rigorous Certified Third-Party Assessor Organization (C3PAO). 'Achieving CMMC Level 2 confirms that Maximus now meets the Defense Department's rigorous cybersecurity standards,' said Derrick Pledger, Chief Digital & Information Officer, Maximus. 'This extends to the defense and Veterans health programs we support every day, giving government leaders confidence in the security of sensitive data while missions move forward with speed and resilience.' CMMC is a DoD-sanctioned program designed to assess and enhance the cybersecurity posture of defense contractors and subcontractors, particularly those handling sensitive unclassified information. The 2.0 program is the next iteration of the CMMC model, which streamlines requirements and aligns to widely accepted National Institute of Standards and Technology cybersecurity standards. For government customers, this certification means they can move faster to deployment. With CMMC Level 2 already secured, programs supported by Maximus avoid lengthy Authorization to Operate (ATO) delays—accelerating timelines and reducing risk at startup. 'CMMC validates our enhanced cybersecurity posture as a defense contractor,' said Pledger, 'and positions Maximus to compete effectively across the federal contracting landscape.' For more information on the work Maximus does for agencies with cybersecurity, please visit: About Maximus As a leading strategic partner to government, Maximus helps improve the delivery of public services amid complex technology, health, economic, environmental, and social challenges. With a deep understanding of program service delivery, acute insights that achieve operational excellence, and an extensive awareness of the needs of the people being served, our employees advance the critical missions of our partners. Maximus delivers innovative business process management and technology solutions that provide improved outcomes for the public and higher levels of productivity and efficiency of government-sponsored programs. For more information, visit
Malaysian Reserve
24-07-2025
- Business
- Malaysian Reserve
GRS Technology Solutions Achieves CMMC Level 2 Certification with A-LIGN, Reinforcing Its Role as a Trusted Partner for Federal Cybersecurity Compliance
WASHINGTON, July 24, 2025 /PRNewswire/ — GRS Technology Solutions, a trusted IT, cybersecurity, and compliance provider dedicated to protecting federal contractors and their missions, proudly announces that it has successfully achieved Cybersecurity Maturity Model Certification (CMMC) Level 2, following a rigorous third-party assessment conducted by A-LIGN, a leading C3PAO. This significant milestone positions GRS among a select group of Managed Service Providers (MSPs) and Managed Security Service Providers (MSSPs) certified to meet the Department of Defense's cybersecurity requirements for handling Controlled Unclassified Information (CUI). The certification reflects GRS's commitment to implementing mature, repeatable security practices that meet the 110 controls outlined in NIST SP 800-171 Rev 2. GRS is also a Registered Provider Organization (RPO), recognized by the Cyber AB for its ability to deliver consulting services aligned with the CMMC framework. 'We've always prioritized security and compliance internally and for our clients. Achieving CMMC Level 2 is a testament to the systems, processes, and culture of cybersecurity we've built over the years,' said Larry Burbano, CEO of GRS. 'This certification not only reinforces our credibility, but it also enables us to better support federal contractors who are navigating their own CMMC journey.' Throughout this journey, we put in countless late nights to develop a detailed Customer Responsibility Matrix (CRM) that clearly outlines ownership and responsibility for each assessment objective. It's designed to ensure mutual accountability. Our clients can hold us accountable, and we can do the same in return. What This Means for Clients: End-to-End Confidence: GRS applies the same high standards of security and compliance to your environment as we do to our own – whether you're using Windows or macOS systems. Certified Expertise: With Certified CMMC Assessors (CCAs) and Certified CMMC Professionals (CCPs) on staff, GRS brings deep, in-house expertise to every stage of your compliance journey. From gap assessments and remediation to full audit readiness. We don't just prepare you for the assessment; we sit at the table and represent you when it matters most. Ownership: We take full ownership of the CMMC journey alongside our clients. From advising and implementing to managing and supporting each control and assessment objective, we move with purpose – and expect you to keep pace. Think of us as your personal CMMC trainer, keeping you on track every step of the way. A Competitive Edge for Clients: Partnering with a CMMC-certified MSP/MSSP gives federal contractors a clear advantage in achieving CMMC compliance and strengthening their position to win federal contracts. About GRS Technology Solutions: GRS Technology Solutions isn't your typical Managed Service Provider (MSP) and Managed Security Service Provider (MSSP). We're built differently. We are a team of A+ players driven by a clear mission: to deliver excellence without compromise. At GRS, mediocrity has no place. We don't chase volume; we focus on impact. Our clients are federal contractors who demand precision, reliability, and results, and that's exactly what we deliver. With years of proven experience and deep expertise in the Defense Industrial Base, we provide fully managed IT services, cutting-edge FedRAMP-approved cybersecurity solutions, and hands-on CMMC implementation support. If you're looking for a partner who plays at the highest level, you've just found one. Whether you're preparing for CMMC L1/L2, facing a DIBCAC audit, navigating DFARS and NIST 800-171 requirements, or modernizing legacy systems, GRS is the trusted partner devoted to protecting your mission, your data, and your future. For more information visit
Business Wire
16-07-2025
- Business
- Business Wire
Kimmell Cybersecurity Achieves CMMC Level 2 Certification for MSP and MSSP Services, Strengthening Cybersecurity for DoD Contractors
AKRON, Ohio--(BUSINESS WIRE)--Kimmell Cybersecurity, a CMMC Certified Third-Party Assessment Organization (C3PAO), is proud to announce it has successfully achieved CMMC Level 2 certification for its Managed Service Provider (MSP) and Managed Security Service Provider (MSSP) offerings. This accomplishment makes Kimmell Cybersecurity one of the few C3PAOs to both assess and provide services at CMMC Level 2—providing a fully compliant service environment for contractors in the Defense Industrial Base (DIB). Kimmell Cybersecurity - MSP / MSSP meets DOD's stringent CMMC security requirements achieving CMMC Level 2 certification. This certification is especially significant for Department of Defense (DoD) contractors handling Controlled Unclassified Information (CUI), as it ensures Kimmell Cybersecurity's managed services meet the same rigorous standards required of their clients under the NIST SP 800-171 Rev 2 framework. 'For DoD contractors navigating the complexities of CMMC compliance, this certification proves that our team practices exactly what we assess,' said Brett Kimmell, Managing Member at Kimmell Cybersecurity. 'We understand contractor's unique challenges and offer managed services that are not only compliant but tested to the highest federal standards.' The independent third-party assessment verified that Kimmell Cybersecurity has implemented and maintains all security practices required for CMMC Level 2 certification—strengthening the company's position as a trusted cybersecurity partner for contractors building the future of U.S. defense. With this milestone, DoD contractors and subcontractors can rely on Kimmell Cybersecurity for expert CMMC assessments, consulting, and Level 2-certified managed services that directly support compliance readiness. To learn more email cmmc@ or contact Erik Bennett 330-762-5143 or ebennett@ About Kimmell Cybersecurity Kimmell Cybersecurity is a leading CMMC C3PAO, delivering certified cybersecurity assessments, advisory, and fully managed services tailored to DoD manufacturers and contractors. With deep experience in defense compliance, Kimmell helps organizations secure their systems, safeguard CUI, and achieve CMMC certification with confidence.
Associated Press
29-05-2025
- Business
- Associated Press
A-LIGN Issues CMMC Level 2 Certification to Quiet Professionals
TAMPA, Fla., May 29, 2025 /PRNewswire/ -- A-LIGN, a leading Cybersecurity Maturity Model Certification (CMMC) Third-Party Assessor Organization (C3PAO), proudly announces the issuance of one of its first CMMC Level 2 certifications to Quiet Professionals LLC. This milestone underscores A-LIGN's dedication to helping U.S. Department of Defense (DoD) contractors meet stringent cybersecurity requirements while safeguarding sensitive Controlled Unclassified Information (CUI). The CMMC program requires all DoD defense contractors under Level 2 to meet cybersecurity controls and be certified by a C3PAO assessment. Prime contractors and their subcontractors are required to demonstrate that cybersecurity controls have been sufficiently implemented through the completion of independent validation activities performed by an authorized C3PAO like A-LIGN. 'At A-LIGN, we are at the forefront of CMMC, providing businesses with expert guidance to navigate the new DoD standards with confidence,' said Jennifer Hawks, Federal Practice Lead at A-LIGN. 'As a trusted C3PAO, A-LIGN leverages its team of expert CCAs and CCPs to guide organizations through the complex process of CMMC Level 2 certification. We are honored to work with industry leaders like Quiet Professionals, one of the first organizations to secure certification, as they set the standard for cybersecurity excellence.' Quiet Professionals is a veteran-founded company providing secure, scalable solutions for national security and defense organizations, headquartered in Tampa. As the company advances solutions in OSINT, Geospatial Analytics, and Cloud Computing, earning CMMC Level 2 certification reinforces the company's ability to securely support customers' critical missions. 'Our team committed to fully understanding NIST 800-171 and each control family. We developed tailored solutions to meet every requirement, drawing from industry research and leveraging our Microsoft partnership. A-LIGN was a strong partner throughout the process to achieve CMMC Level 2 certification. Their structured approach and expertise helped validate the work our cybersecurity team has done. This achievement is a testament to our collective effort,' said Cory Wilson, Director of Information Technology at Quiet Professionals. As a top C3PAO with over 20 years of experience, A-LIGN has completed over 1,000 NIST-based assessments, including FedRAMP, GovRAMP, NIST 800-171. Contact A-LIGN today to secure your spot in the CMMC certification queue and streamline compliance with an expert-driven approach. About A-LIGN A-LIGN is the leading provider of high-quality, efficient cybersecurity compliance programs. Combining experienced auditors and audit management technology, A-LIGN provides the widest breadth and depth of services including SOC 2, ISO 27001, HITRUST, FedRAMP, and PCI. A-LIGN is the number one issuer of SOC 2 and HITRUST and a top three FedRAMP assessor. For more information, visit About Quiet Professionals LLC Quiet Professionals LLC is a veteran-founded defense and technology company specializing in intelligence, advanced analytics, cybersecurity, and mission support for U.S. government agencies. With roots in the Special Operations Forces (SOF), Quiet Professionals provides highly specialized expertise in counter-threat intelligence, geospatial analysis, cloud integration, and secure technology and operational support to address today's most complex national security challenges with precision and speed. Headquartered in Tampa, Florida, near MacDill Air Force Base—home to U.S. Special Operations Command (USSOCOM) and U.S. Central Command (USCENTCOM)—Quiet Professionals partners with industry leaders like Esri, Microsoft Azure, and Databricks to deliver mission-critical solutions. Built on a foundation of service and excellence, Quiet Professionals empowers defense and intelligence agencies with the expertise, technology, and operational agility to outpace emerging threats and safeguard national security. For more information, visit Media Contact: Elizabeth Strickert [email protected] View original content to download multimedia: SOURCE A-LIGN
Associated Press
25-03-2025
- Business
- Associated Press
Ariento Successfully Achieves CMMC Level 2 Certification
FRANKLIN, TENNESSEE / ACCESS Newswire / March 25, 2025 / Ariento, a leading provider of managed services and authorized C3PAO, is pleased to announce that it has successfully achieved CMMC Level 2 certification. Ariento is both an authorized CMMC Third-Party Assessor Organization (C3PAO) and managed services provider. As such, the company was one of the first to go through a Department of Defense Industrial Base Cybersecurity Assessment Center (DIBCAC) assessment, one of the first to go through a joint surveillance voluntary assessment (JSVA) during the pilot period for CMMC, and now is one of the first to officially certify at a CMMC Level 2. 'While not required, a CMMC Level 2 certification shows our commitment to our managed service clients and will assist in making their certification assessments easier and more cost effective,' said Ariento CEO Chris Rose. 'We've been through countless CMMC Level 2 assessments at this point, including ones administered by the DIBCAC to be an authorized C3PAO, but the official certification is something we decided was the right thing to do for our managed services clients.' Over the past 5+ years, Ariento has helped prepare hundreds of organizations of all sizes across the United States and abroad for the CMMC rollout through its advisory consulting and managed services business lines. To inquire about Ariento's CMMC services, visit The Cybersecurity Maturity Model Certification (CMMC) program was developed to fortify the Defense contractor base against the rising threat of cyber-attacks and safeguard sensitive data shared by the DoD with industry. After more than four years of development, assessments have begun this year and are expected to be enforced in contracts in 2026. About Ariento Inc.: Ariento is the #1 combined CMMC managed service provider and authorized C3PAO and a premier provider of cybersecurity and IT solutions for government contractors and organizations. As an authorized C3PAO, reseller and MSP, Ariento offers a suite of services designed to assist clients in navigating the complex landscape of cybersecurity regulations and standards.
