SecureStrux Becomes a CMMC Registered Provider Organization (RPO)

Modified on: January 11, 2021

The Cybersecurity Maturity Model Certification Accreditation Body (CMMC-AB) is the entity responsible for launching and overseeing the Cybersecurity Model Certification (CMMC) program for the Department of Defense (DoD). As of September 29, 2020, the CMMC-AB certified SecureStrux as an accredited Registered Provider Organization (RPO). 

Scott Carl, SecureStrux’s President, commented, “[We are] honored to become a member of the CMMC-AB ecosystem and support the mission to secure the Department of Defense’s information across the supply chain.” 

Cybersecurity compliance is a matter of national security. Ensuring compliance across the Defense Industrial Base (DIB) is a massive undertaking for the CMMC-AB, which brought the revised CMMC program into effect on November 30th, 2020, as per DFARS 252.204-7021. Moving into 2021, CMMC RPOs and RPs will become a critical part of meeting the goal of achieving a fully-compliant supply chain in 2025.

SecureStrux has aggressively pursued our RPO status as well as getting multiple staff members their Registered Practitioner certifications. Since 2008 we’ve been committed to working with all DIB segments to protect their classified and unclassified information. Our involvement in CMMC is part of our ongoing evolution to serve our clients across their cybersecurity compliance and engineering needs. 

What are RPOs, and How Can They Help My Organization with the CMMC?

Registered Provider Organizations (RPOs) have strong expertise in cybersecurity technology and compliance fields and have proved to have sufficient experience to receive RPO status. Staffed by certified Registered Practitioners (RPs), RPOs are certified by the CMMC-AB to provide official consulting, advice, and recommendations to organizations seeking certification for CMMC in the DIB supply chain. The RPO application process is rigorous and includes rounds of interviews and background checks to confirm that your RPO will be able to provide the highest quality assistance to your organization.

RPO applicants agree to the CMMC-AB code of conduct before being awarded authorizations to participate in the CMMC ecosystem. Should an RP or RPO fail a quality assurance check, they will no longer be permitted to engage in the CMMC AB RPO and RP program.

What sets RPs and RPOs apart from other entities and consultancies that offer CMMC-related services is their training, commitment, and direct relationship with the CMMC-AB, which officially authorizes them to assist organizations’ preparations for CMMC assessment. The addition of quality assurance is also of benefit for organizations that may not know where to seek help.

To learn about how SecureStrux plans to help organizations prepare for the CMMC in 2021 and beyond, review our CMMC services, or schedule a one-on-one meeting with a CMMC subject matter expert. 

For tips on how to plan for CMMC preparation in 2021, watch our webinar, “Preparing for the CMMC,” presented in collaboration with Apptega.