iKON

Cybersecurity

Compliance framework.

Our operations are aligned to NIST 800-171 controls and CMMC readiness practices. We do not claim CMMC certification — we claim readiness and documented alignment. Security posture documentation is available for procurement review.

NIST SP 800-171

Aligned

Our managed services operations are built around the 110 security requirements in NIST 800-171. Access control, audit, incident response, and media protection controls are implemented and documented.

CMMC

Readiness — not certification

We operate at a CMMC readiness level and maintain the documentation required to support a formal certification assessment. CMMC certification has not been awarded; we claim readiness only.

FERPA

K-12 applicable

For school district clients, our managed services include student-data handling practices aligned with FERPA. Data processing agreements are available for district legal review.

HIPAA

Healthcare applicable

BAA available for healthcare clients. Our endpoint management and network controls support HIPAA technical safeguard requirements.

Documentation

Compliance documentation in development

Formal compliance documentation packages — NIST 800-171 System Security Plan, CMMC readiness assessment, and control matrix — are being finalized and will be available for procurement review. Contact us to discuss your specific compliance documentation requirements.