NIST SP 800-171
AlignedOur managed services operations are built around the 110 security requirements in NIST 800-171. Access control, audit, incident response, and media protection controls are implemented and documented.
CMMC
Readiness — not certificationWe operate at a CMMC readiness level and maintain the documentation required to support a formal certification assessment. CMMC certification has not been awarded; we claim readiness only.
FERPA
K-12 applicableFor school district clients, our managed services include student-data handling practices aligned with FERPA. Data processing agreements are available for district legal review.
HIPAA
Healthcare applicableBAA available for healthcare clients. Our endpoint management and network controls support HIPAA technical safeguard requirements.
Documentation
Compliance documentation in development
Formal compliance documentation packages — NIST 800-171 System Security Plan, CMMC readiness assessment, and control matrix — are being finalized and will be available for procurement review. Contact us to discuss your specific compliance documentation requirements.