Compliance with DFARS 252.204-7012, for the last three years, has been self-certified by the Defense Industrial Base (DIB). Self-certification is no longer acceptable and DoD will be the first agency to use 3rd Party Auditors to ensure Controlled Unclassified Information (CUI) is properly managed, controlled, accessed, and distributed at both the Prime and Subcontractor levels.
Takeaway: How is my current Cybersecurity Hygiene? Is my business at risk?
Review of System Security Plan (SSP); areas that need to be shored up are identified. GAPS noted - with assistance in ensuring timely closure - all with an eye on a CMMC certification for your business - immediate and future.
How can I be more proactive in the eyes of the Government? Workforce on-board?
Plan of Action
With so many domains. And so many practices; with NIST SP 800-171V1 in fluid state. With C3PAO courseware and requirements still in work; a Plan of Action and Milestones (POAM) is needed but adaptable.
Will my POAM walk me into the right CMMC Certification Level to keep and expand my business?
Our auditors can prepare you for this, and then according to the latest CMMC Certification Mandates - assess, evaluate, and certify compliance at the appropriate level (1-3). All under IV&V; an independent Validation and Verification engagement.
Right Certification Level aligned with my strategic vision? Alignment is essential.
NEW DAWN - THINGS have CHANGED - Now What?
How can I approach this requirement and keep it affordable?
The DoD mandate to hold a CMMC level 3 Certificate is going to be a hit on your budget amd planning in 2020. Our objective is to get your needed certification, which will give you a competitive advantage - in the fastest amount of time at the absolute lowest cost!
We are reliable
With more than 35 years of DoD experience, the majority spent as a compliance and contracting functional - understanding exactly what the DoD is expecting, and in what form, look, touch, feel - is a stripe we have earned.
We are responsible
We are steeped in exactly what it will take to pass an assessment and audit. Charging us to deliver against our price and schedule is a responsibility that is core for ARES. We know this is a cost item that few have budgeted for!
We are reachable
Working closely with your appointee - delegated organic resources - will allow us to have frequent communications and timely reviews of all documents (e.g. Policies, Procedures, Operating Instructions). Good Comms essential!
Do you need expert cyber security help right away?
To quote the Office of Secretary of Defense (OSD) CIO - "if a company is not 3rd party certified, do not expect to participate in DoD business. The price of admission after FY2020 is a 3rd Party CMMC certification at the right level."
ARES - a Value add!!
What our clients say
"When it comes to meeting the demands of the USAF, in their language, against stated compliance - Randy Shearer has delivered not only the instant documentation, but allowed it to have real strategic value."
CEO, International Logistics Group
"When I need an expert on Defense business, I only have one person that comes to mind - Randy Shearer."
Owner, F3 Patriot
Partnered with the best in the industry