CMMC 2.0 Compliance Statement

Policies, frameworks, and compliance standards we hold ourselves to.

Back to Legal Documents

American Digital Services, LLC adheres to the Cybersecurity Maturity Model Certification (CMMC) 2.0 standards, ensuring robust security measures to protect sensitive defense information.

https://dodcio.defense.gov/CMMC/about/

The Cybersecurity Maturity Model Certification (CMMC) 2.0 is the Department of Defense's (DoD) comprehensive framework designed to protect Federal Contract Information (FCI) and Controlled Unclassified Information (CUI) within the Defense Industrial Base (DIB). American Digital Services, LLC aligns its infrastructure, access controls, and security protocols with these rigorous requirements to ensure a secure environment for our defense and government-contracting clients.

CMMC 2.0 Levels of Compliance

Level 1: Foundational (Protecting FCI)

  • Focus: Basic Cyber Hygiene to protect Federal Contract Information.
  • Practices: 17 foundational security practices aligned with FAR 52.204-21.
  • Assessment Mechanism: Annual self-assessment accompanied by an affirmative affirmation from a senior company official.

Level 2: Advanced (Protecting CUI)

  • Focus: Advanced Cyber Hygiene to protect Controlled Unclassified Information against more sophisticated threats.
  • Practices: 110 security practices fully aligned with NIST SP 800-171.
  • Assessment Mechanism: Triennial third-party assessment conducted by a Certified Third-Party Assessment Organization (C3PAO) for prioritized acquisitions, or an annual self-assessment for programs not involving critical national security information.

Level 3: Expert (Protecting CUI against APTs)

  • Focus: Progressive and proactive cybersecurity practices designed to defend against Advanced Persistent Threats (APTs).
  • Practices: 110 practices from NIST SP 800-171 plus a selected subset of advanced controls aligned with NIST SP 800-172.
  • Assessment Mechanism: Triennial government-led assessments conducted by the Defense Industrial Base Cybersecurity Assessment Center (DIBCAC).

Commitment to Defense-Grade Security

American Digital Services, LLC is committed to maintaining the highest standards of security. By architecting our managed systems and networks to support CMMC 2.0 guidelines, we enable our clients to meet their DoD contractual obligations confidently, ensuring the continuous protection of sensitive federal information through rigorous, verifiable, and mature compliance efforts.

Ready to get CMMC-ready, secure, and supported?

We implement and maintain the controls โ€” independent assessors verify them.

Contact Us 800-863-3854