THE PROBLEM
The federal government asked a leading manufacturer of space and aeronautical parts to perform a business impact analysis as a condition of a contract renewal.
A new rule passed in the fall of 2020 requires DoD contractors and subcontractors to complete a cybersecurity self-assessment.
The rule, technically an interim rule, amends the Defense Federal Acquisition Regulation Supplement, or DFARS, by requiring the implementation of a DoD Assessment Methodology and Cybersecurity Maturity Model Certification (CMMC) framework to ensure unclassified information within the DoD supply chain is protected.
The deadline was tight, the team working on the project needed security clearances, and the previous BIA focused almost entirely on facilities.
HOW CLOUDSKOPE HELPED
The Cloudksope Cybersecurity and Risk teams, led by members with active TSSCI clearances, helped conduct a comprehensive and compliant cyber risk assessment and BIA to ensure our client could deliver their critical supply-chain assurance product to the United States Air Force.
With the added advantage of having Army and Intelligence veterans on the team, the Cloudskope team was able to accelerate the pace at which the client needed to close the contract renewal.
THE RESULTS
Systematic and comprehensive risk reports and overview across their entire portfolio:
The final result of this highly successful project was the successful renewal of the DoD contract for our client, having satisfied the requirements of the DFARS and ITAR Export Controls. ( Department of State. Additionally, the systems put in place by Cloudskope continue to deliver value by providing a complete dashboard across the business and vendors to ensure ongoing diligence.
If you're ready to tranform your business, chat with us about a custom solution.
