On July 28, Edgewater Federal Solutions, Inc. announced that it has achieved Cybersecurity Maturity Model Certification (CMMC) Level 2. This milestone positions Edgewater among the first wave of mid-tier federal contractors to meet the rigorous cybersecurity standards now required for handling Controlled Unclassified Information (CUI) across federal contracts.
“Achieving CMMC Level 2 certification reflects Edgewater’s proactive commitment to cybersecurity excellence and our readiness to support the evolving needs of our federal clients,” said Tom Ferrando, Edgewater’s CEO. “This certification not only validates our ability to protect sensitive government data from dangerous threat actors, but it’s also a testament to the discipline, foresight, and technical rigor of our team.”
The CMMC framework, signed into law in December 2024, is a government-wide initiative designed to safeguard CUI and Federal Contract Information (FCI) through standardized cybersecurity practices across the Defense Industrial Base (DIB). While CMMC Level 1 focuses on 17 basic controls and allows for self-assessment, Level 2 requires a comprehensive third-party assessment against 110 security controls aligned with NIST SP 800-171 Rev. 2 and NIST SP 800-171A. This certification must be renewed every three years, with annual internal assessments in between.
Source: Edgewater
IC News delivers the situational awareness you need to get ahead and stay ahead in the IC contracting space. Subscribe today for full access to 10,000+ articles, plus new articles each weekday.
By 
