Sold by: 38North Security, LLC
The Cybersecurity Maturity Model Certification (CMMC) is a Department of Defense (DoD) assessment framework and certification program for contractors supporting the DoD to demonstrate they have robust cybersecurity practices in place to protect Federal Contract Information (FCI) and Controlled Unclassified Information (CUI). As a framework, CMMC includes three levels with specific practices and assessment criteria. Understanding and navigating these requirements can be overwhelming for many contractors. 38North’s experienced, technically expert CMMC compliance consultants make the process easier for AWS clients.
Overview
Since the inception of the company, 38North Security have supported hundreds of companies achieve DoD Impact Level (IL) 4 and 5 authorizations, as well as NIST 800-171 compliance. As the CMMC program becomes a new contractual requirement, 38North is now an approved Cyber Accreditation Body (Cyber-AB) Registered Provider Organization (RPO), offering pre-assessment consulting to AWS clients and support during CMMC assessments when issues arise. CMMC, based on DFARS, NIST 800-171, and NIST SP 800-172, requires defense contractors and sub-contractors to have robust security measures in place to protect DoD FCI and CUI. 38North has been a leader in preparing for this new mandate. Backed by this experience, our approach reduces common errors in the assessment process, saving AWS client's time and reducing compliance risk. Whether you need guidance, documentation, or hands-on security engineering support, we’re here to streamline your CMMC journey.
Select the “continue” button in the top right corner of this page to engage in 38North CMMC Advisory Services.
Securing Controlled Unclassified Information
Gap Assessment: We typically begin with performing the industry’s most detailed gap analysis, followed by an actionable compliance roadmap to highlight CMMC areas of concern for AWS clients. Specifically, we highlight the gaps related to requirements scored as 5 and 3 points, which would prevent the organization seeking having a successful assessment.
Advisory and Architecture Support: We work with your team and use your existing tools to maximize your security and compliance posture for protecting FCI and CUI data, while carefully selecting and adding new processes and technical solutions as needed to achieve CMMC compliance for AWS clients.
Cloud Security Engineering: We specialize in guiding CSPs through engineering puzzles while shaping your existing security processes to achieve compliance with CMMC. 38North can build secure environments from scratch or provide cloud engineers to supplement your DevOps workforce.
Documentation Development: Our technical writers document your CMMC security and compliance posture in complete documentation that withstand CMMC assessment scrutiny.
Assessment Support: We are your advocate throughout the assessment process, with teams on standby to quickly address any identified issues found within your initial/annual assessments.
Maintenance and Continuous Monitoring: Following CMMC assessment and certification by a C3PAO, 38North provides the full scope of continuous monitoring support needed to maintain compliance with CMMC.
Highlights
- Experience Matters: Our Senior Advisors combine former Third-Party Assessment Organization (3PAO) and in-house CSP experience to provide our clients with best practices based on years of working with DoD in support of DoD IL 4, 5, 6, NIST SP 800-171, NIST SP 800-172, and now CMMC. We also have close working relationships with the top C3PAOs and critical leaders within the DoD. We understand how DoD, DISA and C3PAOs view risk and compliance.
- Reduce Time to Market: Our team of experts focus our attention to every aspect for your CMMC journey. We specialize in helping you right-size (and get right) your approach to meeting CMMC requirements. 38North works to avoid disrupting critical parts of the clients business, only introduce required changes to meet compliance needs, and ensure technical compliance to avoid gotcha moments.
- Strategic Planning: The 38North team focuses each engagement on planning for long term success across multiple security frameworks. 38North works with each client to determine the long-term roadmap plans for each client. This allows us to utilize the right resources to compress timelines based on compliance goals.
Details
Sold by
Categories
Delivery method
Deployed on AWS
Unlock automation with AI agent solutions
Fast-track AI initiatives with agents, tools, and solutions from AWS Partners.
Pricing
Custom pricing options
Pricing is based on your specific requirements and eligibility. To get a custom quote for your needs, request a private offer.
Legal
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.