portfolio page
Cyber-Risk and Governance

An Aeronautical manufacturer adds value and reduces risk with a global business impact analysis (BIA)

A large Aerospace manaufacturer embarks on a global business impact analysis to understand and mitigate post pandemic risk to revenue.


The federal government asked a leading manufacturer of space and aeronautical parts to perform a business impact analysis as a condition of a contract renewal.

A new rule passed in the fall of 2020 requires DoD contractors and subcontractors to complete a cybersecurity self-assessment.

The rule, technically an interim rule, amends the Defense Federal Acquisition Regulation Supplement, or DFARS, by requiring the implementation of a DoD Assessment Methodology and Cybersecurity Maturity Model Certification (CMMC) framework to ensure unclassified information within the DoD supply chain is protected.

The deadline was tight, the team working on the project needed security clearances, and the previous BIA focused almost entirely on facilities.


The Cloudksope Cybersecurity and Risk teams, led by members with active TSSCI clearances, helped conduct a comprehensive and compliant cyber risk assessment and BIA to ensure our client could deliver their critical supply-chain assurance product to the United States Air Force.

With the added advantage of having Army and Intelligence veterans on the team, the Cloudskope team was able to accelerate the pace at which the client needed to close the contract renewal.


Systematic and comprehensive risk reports and overview across their entire portfolio:

  • A newly integrated and uniform risk analysis process across all portfolio companies
  • Risk reports across each business unit
  • Impact Analysis compliant with the DoD DFARS requirements
  • End-to-end program for cyber, risk, and disaster recovery across each location in the United States integrated end-to-end with downstream vendors.


The final result of this highly successful project was the successful renewal of the DoD contract for our client, having satisfied the requirements of the DFARS and ITAR Export Controls. ( Department of State. Additionally, the systems put in place by Cloudskope continue to deliver value by providing a complete dashboard across the business and vendors to ensure ongoing diligence.