Cybersecurity Maturity Model Certification Third-Party Assessment Organization Services
Location:
Virginia, United States
Posted on:
Deadline:
Summary:
Seeking certified organizations to perform Level 2 CMMC third-party assessments for a range of IT system types in Virginia.
Get full access to this RFP
Download the full RFP document and use Settle's AI to analyze requirements, estimate budget, and draft winning responses in minutes.
The government authority located in Virginia is seeking vendors to provide Cybersecurity Maturity Model Certification (CMMC) Third-Party Assessment Organization (C3PAO) services. This initiative requires one or more certified C3PAOs capable of conducting Level 2 CMMC Certifications across multiple system types and networks.
The systems to be covered include secure enclaves with network architectures that support virtual desktop infrastructure and network-attached storage with remote access capabilities, individual systems not connected to networked environments but managed via a master system security plan with individualized addendums, and high-performance computing (HPC) cluster architectures. The selected organization(s) will be responsible for performing assessments and certifications to ensure compliance with CMMC Level 2 requirements.
Qualified vendors must demonstrate their ability to evaluate the specified environments, possess the proper credentials, and operate in accordance with current CMMC guidelines.
Best-fit vendors:
• Certified CMMC Third-Party Assessment Organization (C3PAO)
• Proven experience conducting Level 2 CMMC assessments across diverse system architectures
• Familiarity with secure enclaves, virtual desktop infrastructure, and HPC clusters
• Ability to serve government clients in Virginia
