ASRC Federal recently achieved Level 2 Cybersecurity Maturity Model Certification (CMMC) following a rigorous independent assessment by a Certified Third-Party Assessment Organization (C3PAO). This milestone validates the company’s strong and compliant cybersecurity posture in support of Department of War (DoW) missions.
Established by the DoW, the CMMC framework requires contractors within the defense industrial base to demonstrate their ability to combat increasing cyber threats and safeguard sensitive government information, including Federal Contract Information (FCI) and Controlled Unclassified Information (CUI).
Attaining CMMC 2.0 Level 2 certification affirms ASRC Federal has fully implemented all 110 security controls aligned with the National Institute of Standards and Technology (NIST) Special Publication 800-171, validating the operational maturity of its enterprise-wide cybersecurity controls and governance, including continuous monitoring and incident response capabilities.
“Achieving CMMC Level 2 highlights our culture of operational excellence and commitment to protecting critical data that drives U.S. missions. As a trusted partner to the defense community, we will remain committed to investing in secure infrastructure that advances mission readiness and helps meet the shifting cybersecurity requirements of the national security sector,” said John Pisano, ASRC Federal chief information officer.
As the CMMC framework continues to roll out across the defense industrial base, few companies have completed C3PAO Level 2 certification. “ASRC Federal is among just over 1,000 fully certified companies — roughly 2% of the approximately 70,000 organizations expected to need CMMC Level 2 compliance,” noted Ron Davis, ASRC Federal chief information security officer. “This certification proves our strong cybersecurity defenses, demonstrating our ability to safeguard the nation’s most sensitive defense data environments across our people, processes and technologies.”
“This accomplishment reflects our core values of teamwork, accountability, integrity and continuous improvement and highlights the vital role of collaboration across our entire organization,” Pisano added. “I cannot underscore enough the focused execution and sustained commitment of our information technology (IT) team to advancing our cybersecurity posture during this CMMC initiative.”
For their leadership and innovation to driving technology excellence, Pisano and Davis have been named finalists in this year’s CapitalCIO and CapitalCISO ORBIE Awards, which will be announced in late June. Learn more about Pisano’s journey and leadership philosophy in this Rookies to Rockstar Podcast.
