Cybersecurity Maturity Model Certification (CMMC)
Gain a competitive advantage for federal contracts through cybersecurity certification
Overview
Government contractors need to comply with the Cybersecurity Maturity Model Certification (CMMC) released by the Department of Defense (DoD).
For a given CMMC level, the associated controls and processes, when implemented, can reduce risk against a specific set of cyber threats. As the number of contracts with these certification requirements increases, U.S. government contractors should plan, design and implement their cybersecurity strategy for safeguarding Controlled Unclassified Information (CUI).
The BDO Government Contracting practice has the knowledge and experience to help defense contractors meet CMMC-level requirements. As a CMMC Registered Practitioner Organization (RPO), BDO has built a cybersecurity compliance team that possesses a deep bench of advanced degrees in cybersecurity and information assurance, combined with over 30 years of experience supporting DoD programs in information technology, information assurance and cybersecurity. The team includes CMMC-certified Registered Practitioners with cybersecurity industry certifications, such as EC-Council, ISACA, CompTIA, (ISC)2 and GIAC certified cybersecurity professionals.
How BDO Can Help
Risk Management Framework
Our team of experienced Risk Management Framework (RMF) professionals provides full-scope package preparation to help DoD contractors achieve, maintain and renew their classified facility Authorization to Operate (ATO).
BDO’s professionals provide package preparation services for DoD clients through the prescribed seven-step RMF process:
- Policy development.
- Security control implementation and validation.
- Enterprise Mission Assurance Support Service (eMASS) consulting and support.
- eMASS security control matrix preparation and population.
- Cybersecurity lab processes.
- Security Technical Implementation Guide (STIG) hardening.
- Package submission.
BDO cybersecurity consultants support our clients with continuous monitoring activities required by eMASS and RMF to achieve, manage and maintain an active ATO for DoD or DCMA.
Government Contracting Insights
Explore our most recent resources and thought leadership.
The BDO GovCon Week Ahead - February 2023
February 2, 2023The BDO GovCon Week Ahead - February 2023
February 2, 2023Description
GSA's OASIS Plus (OASIS+) Draft RFPs Have Been Released: Are You Prepared?
February 2, 2023GSA's OASIS Plus (OASIS+) Draft RFPs Have Been Released: Are You Prepared?
February 2, 2023The General Services Administration (GSA) has announced a new contract vehicle which the agency sees as the “next generation Best-in-Class Multi-Agency Contracts (BIC MAC) for complex non-IT services.”
The BDO GovCon Week Ahead - January 2023
January 25, 2023The BDO GovCon Week Ahead - January 2023
January 25, 2023Check out the latest issue of The BDO GovCon Week Ahead.
Mandatory Capitalization of R&E Expenses
January 16, 2023Mandatory Capitalization of R&E Expenses
January 16, 2023Government contracting entities often incur considerable expenses associated with the performance of research and development activities — both on behalf of their government agency clients and for the benefit of their own trade or business.
A Review of the Proposed Federal Contractor Greenhouse Gas (GHG) and Climate Risk Disclosure Requirements
January 12, 2023A Review of the Proposed Federal Contractor Greenhouse Gas (GHG) and Climate Risk Disclosure Requirements
January 12, 2023To further champion corporate transparency, the federal government has now proposed a series of disclosure requirements that will formalize reporting processes for both Securities and Exchange Commission (SEC) registered companies and federal contractors.
The BDO GovCon Week Ahead - November 2022
November 17, 2022The BDO GovCon Week Ahead - November 2022
November 17, 2022Check out the latest issue of The BDO GovCon Week Ahead.
The BDO GovCon Week Ahead - October 2022
October 20, 2022The BDO GovCon Week Ahead - October 2022
October 20, 2022Check out the latest issue of The BDO GovCon Week Ahead.
Polaris GWAC - Maximize Your Score on SDVOSB and HUBZone Bids
October 4, 2022Polaris GWAC - Maximize Your Score on SDVOSB and HUBZone Bids
October 4, 2022The General Services Administration (GSA) has released Polaris Governmentwide Acquisition Contract (GWAC) Requests for Proposals (RFP) for the Historically Underutilized Business Zones (HUBZone) Pool (Notice ID 47QTCB22R0006) and Service-Disabled Veteran-Owned Small Businesses (SDVOSB) Pool (Notice ID 47QTCB22R0007).
BDO's Government Contracting Webinar Series
October 2, 2022BDO's Government Contracting Webinar Series
October 2, 2022The Government Contracting Webinar Series provides up to date information affecting government contractors.
The BDO GovCon Week Ahead - September 2022
September 21, 2022The BDO GovCon Week Ahead - September 2022
September 21, 2022Check out the latest issue of The BDO GovCon Week Ahead.
The Cost Accounting Standards (CAS) Guide for Government Contractors
September 6, 2022The Cost Accounting Standards (CAS) Guide for Government Contractors
September 6, 2022Navigating Cost Accounting Standards (CAS) can prove challenging for government contractors.
The BDO GovCon Week Ahead - August 2022
August 24, 2022The BDO GovCon Week Ahead - August 2022
August 24, 2022Check out the latest issue of The BDO GovCon Week Ahead.
The Incurred Cost Submission (ICS) Process Checklist
July 25, 2022The Incurred Cost Submission (ICS) Process Checklist
July 25, 2022Government contractors operate in a highly regulated industry, so it’s critical to understand all applicable requirements for your contracts.
The BDO GovCon Week Ahead - July 2022
July 21, 2022The BDO GovCon Week Ahead - July 2022
July 21, 2022Check out the latest issue of The BDO GovCon Week Ahead.
New OFCCP Contractor Portal Requires Mandatory Annual Certification Requirement for Affirmative Action Program Compliance
June 19, 2022New OFCCP Contractor Portal Requires Mandatory Annual Certification Requirement for Affirmative Action Program Compliance
June 19, 2022This article provides a summary of the requirements, key considerations, related regulations, and potential consequences of non-compliance regarding AAPs and the new OFCCP Contractor Portal.
ASC Topic 842 and Its Impacts on Government Contracting
February 22, 2022ASC Topic 842 and Its Impacts on Government Contracting
February 22, 2022Government contractors were breathing a collective sigh of relief when the Financial Accounting Standards Board (FASB) pushed back the deadline for private companies and nonprofits to comply with new lease accounting rules in April 2020.
Contact Us
Talk to a cybersecurity maturity model certification professional. We will respond in 1-2 business days.
Thank you for contacting BDO. A representative will be in touch shortly.
Meet Our Cybersecurity Maturity Model Certification Industry Leaders
Aaron Raddock
Partner; Government Contracting Industry National Co-Leader
Amy Thorn
Partner; Government Contracting Assurance Practice Leader and Government Contracting Industry National Co-Leader
Together, we thrive.
Everything we do is rooted in our core purpose to help people thrive every day. It’s not only the right business thing to do; it’s the right human thing to do. This starts by putting our people at the center of our work and extends to how we treat and value our people, our clients and our communities. With a dedication to quality and a purpose-driven culture, BDO offers a powerful choice both for clients and those seeking rewarding professional careers.