top of page

Review of Preparedness
for Assessment

  • CPVI will discuss services in depth as well as review level of client expertise.

  • A client account will be unlocked, which will offer access to custom templates for client use.

  • CPVI will consult with client for assessment preparedness in accordance with NIST SP 800-171.

Gap Analysis

  • CPVI will assist in identifying the gap between your current state and the CMMC level you wish to meet.

  • The analysis will help assess your cybersecurity program's current posture and map the program's relationship with the appropriate practices of the CMMC level your company seeks to meet.

Remediation Plan

  • CPVI will assist in preparing a Plan of Action and Milestones (POA&M).

  • CPVI will assist in tracking remediation activities and milestones.

Diagram Development

CPVI will assist in developing methodologies for creating network or data diagrams.

Policy/Plan Document Development

CPVI will provide a CMMC document template package that can be customized to fit your business and IT operational environments.

  • System Security Plan (SSP) template

  • Policy templates covering all 14 control families that make up both NIST SP 800-171 and NIST SP 800-172

Pre-Assessment

CPVI will assist in the following:

  • Ensuring that all applicable security practices are implemented

  • Ensuring that policies and procedures are written properly

  • Gathering evidence for each applicable practice

​

Post-Assessment Remediation Assistance

  • CPVI will assist in understanding C3PAO assessment results.

Media Resources

  • Audio – Can create podcasts in which experts cover CMMC developments, domains, requirements, capabilities, and general practices that support CMMC compliance.

  • Video Presentations – Can create video presentations that cover the different CMMC domains/practices.

bottom of page