Achieving DFARS Compliance

Defense contractors in the Defense Industrial Base (DIB) must meet three base DFARS compliance requirements. At a minimum, defense contractors must meet numbers 1, 2, and 3 below to be eligible for future DoD contract awards. The DoD contractor must meet numbers 1 and 2 before being considered for a CMMC Assessment under DFARS Clause 252.204-7021.

1. DFARS Clause 252.204-7012

NIST SP 800-171 Self-Assessment – 110 Security Controls – complete by 12/2017

2. DFARS Clause 252.204-7019

NIST SP 800-171 Self-Assessment [Reportable Score to Supplier Performance Risk System]

3. DFARS Clause 252.204-7021

NIST SP 800-171  Independently Assessed by an Authorized C3PAO [CMMC Certification)


In-House Expertise With SecureStrux

Equipped with in-house CMMC expertise, our assessors guide you in meeting DoD’s CUI protection requirements for non-federal systems and fulfilling DFARS compliance commitments.

Schedule Meeting

Our Process

Walking you through your compliance requirements, especially meeting multiple regulatory mandates, is our specialty. Compliance is a large undertaking that takes in-depth analysis, strategic planning, implementation, and continuous monitoring. Following our three-pillar approach, SecureStrux will guide you to compliance. This will include:


Discovery and Gap Analysis


Technical and Non-technical remediation


Continuous compliance monitoring to ensure compliance is still being met

Fulfill your DFARS commitments
with SecureStrux

Schedule Meeting