CMMC Compliant Cybersecure Systems for Small Business

Dnutch Associates, Inc. is offering CCIB™ as a hardware and software turnkey solution to help businesses in the U.S. Department of Defense (DoD) Defense Industrial Base (DIB) achieve compliance with federally-mandated cybersecurity standards.

Download Details

COMPLIANCE WITH GOVERNMENT MANDATE

The DEFENSE FEDERAL ACQUISITION REGULATION SUPPLEMENT (DFARS) CASE 2019–D041 was implemented by the Department of Defense (DoD) on September 29, 2020 as an Interim Rule. This rule amends the DFARS to implement a DoD Assessment Methodology and Cybersecurity Maturity Model Certification framework to assess contractor implementation of cybersecurity requirements and enhance the protection of unclassified information within the DoD supply chain.

  • DFARS mandates the implementation of NIST SP 800-171r2. This requires companies seeking government contracts to deliver self-assessment scores with a System Security Plan (SSP) and a Plan of Action and Milestones (POA&Ms) to the Supplier Performance Risk System (SPRS) for the DoD.
  • CMMC 2.0 is on the horizon. It is a program designed by the Department of Defense (DoD) to define minimum levels of protection for FCI (Federal Contract Information) and CUI (Controlled Unclassified Information). Contracts with FCI require compliance with six CMMC 2.0 Domains. Contracts with CUI require compliance with all fourteen CMMC 2.0 Domains; the requirements mirror the 110 security practices in NIST SP 800-171.

Meets Current Regulations

DFARS Interim Rule requires self-assessment against NIST SP 800-171r2 & published score in SPRS.

Technology Compliance

Secure computing and cloud communication platform with US Sovereign Cloud option.

Administrative Compliance

Tools to help document corporate governance,
self-assessment, and SPRS reporting

Administrative Compliance

Cost-effective compliance solution for companies with less than 25 employees.

Companies That Require Cybersecurity Compliance

  • Affected Companies: Companies that do business with the Department of Defense in the Defense Supply Chain (DSC) and the Defense Industrial Base (DIB) are required to perform a self-assessment relative to requirements stated in NIST SP 800-171r2. This self-assessment must be published in the Supplier Performance Risk System (SPRS) to comply with DFARS Case 2019-D041.
  • Flow Down: Organizations that do business with companies in the DSC and DIB are also required to comply with this mandate for self-assessment.
  • Contract Requirements: Contracting agencies will require compliance with the DFARS Interim Rule upon award of a contract or contract renewal.

Become CMMC Compliant with CCIB™

Dnutch Associates, Inc. is offering CCIB™ as a turnkey solution for businesses in the Defense Industrial Base (DIB) designed to meet new federal mandated cybersecurity standards.

  • Meet Current Regulations: DFARS Interim Rule requires self-assessment against NIST SP 800-171r2 and reporting to the Supplier Performance Risk System (SPRS).
  • Administrative Compliance: Optional Tools are being offered with CCIB™ to help document corporate governance, self-assessment and SPRS reporting.
  • Additional Security: Optional GCC-High Subscription is being offered with CCIB™ to provide a secure computing and cloud communication environment in the US Sovereign Cloud.
CCIB by Dnutch
  • Expedite Compliance: Small businesses with minimal IT resources will save time and money, using CCIB™ and the Optional Tools.

What You Get with Dnutch CCIB™

  • Secure laptop & cloud bundle
  • Dynamic monitoring & reporting
  • Cost-Effective and scalable
  • Documentation tools (optional)
  • Financing available

CCIB™ is not for sale to businesses located outside the continental United States (CONUS).

For More Information

About Dnutch Associates, Inc.

Dnutch Associates, Inc. is an SBA Small Disadvantaged Business (SDB) certified, Woman-Owned (WOSB), Economically Disadvantaged Woman-Owned (EDWOSB), Service-Disabled Veteran-Owned Business (SDVOSB) engineering and consulting firm offering exceptionally qualified and experienced staff that will meet your IT challenges.

Our fundamental value comes from our exceptionally qualified staff, our continual use of industry best practices, and our commitment to learning.