JSL Technologies Inc. announced today that it has successfully earned a Cybersecurity Maturity Model Certification (CMMC) Level 2 certification. This involved a certified third party determining that JSL correctly implements security controls and meets all 110 security requirements and 320 assessment objectives. Sentar, Inc was the 3^rd party certifying organization.

CMMC is a major Department of Defense (DoD) program built to protect the defense industrial base from increasingly frequent and complex cyber-attacks. It particularly aims to enhance the protection of controlled unclassified information (CUI) and federal contract information.

It is built on a framework that combines various cybersecurity standards and best practices to safeguard sensitive information to enable and protect the warfighter; dynamically enhance DIB cybersecurity to meet evolving threats; ensure accountability while minimizing barriers to compliance with DoD requirements; contribute towards instilling a collaborative culture of cybersecurity and cyber resilience; and maintain public trust through high professional and ethical standards.

CMMC Level 2 is an advanced certification for handling CUI. It goes beyond basic good cyber hygiene practices, requiring companies to provide proper access control, incident response, risk management and system and communications protection. For companies on contracts involving CUI, compliance must be verified by an outside audit every three years as well as an annual executive affirmation of ongoing compliance.

“This is a major milestone that showcases our unwavering commitment to robust cybersecurity and safeguarding of sensitive data,” Director of IT Tony Belvedere “This certification doesn’t just validate our capabilities, it elevates them. JSL is stronger, more secure and more ready than ever to deliver top-tier, locked-down solutions to our partners and clients.”

The CMMC Level 2 standard includes 22 practices to ensure only authorized users can access CUI. There are also 11 practices required for identification and authentication; nine practices for system auditing, event review and audit log protections; and three practices for operational incident handling, reporting and testing. In addition, there are nine required practices for configuration management as well as required awareness training, media protection, personnel security, physical protection, risk assessment, security assessment, systems and communications protection and integrity.

“A huge thank you to our powerhouse IT team, Tony Belvedere and Greg Groshko,” said Chris Lewis. “Their dedication, hard work and expertise were the driving force behind this achievement.” JSL is a Combat Systems Engineering company founded in 2008 with the commitment of delivering practical, innovative and affordable solutions in support of the U.S. Navy’s surface ships and advanced weapons systems. JSL is a Small Disadvantaged and Veteran-Owned Small Business that is Cybersecurity Maturity Model CMMC Level 2 certified, ISO 9001:2015-certified and NIST SP 800-171-compliant. It is headquartered in Oxnard, CA, with more than 200 engineers, logisticians, information technology specialists, program analysts and support personnel who provide customers solutions, services and products nationwide and at international locations.