Compliance Services
CMMC Compliance
PKH provides support to ensure contractors and suppliers meet the rigorous standards of the Cybersecurity Maturity Model Certification. We focus on actionable remediation steps and implementation plans, while leading our customers through every step of the certification process. The PKH approach is focused on simplifying and streamlining compliance with the ultimate objective of strengthening organizational cybersecurity and reducing risk exposure.
Basic Safeguarding of Covered Contractor Information Systems is the most basic computer security requirement that was first adopted in 2016. This requirement applies to all systems that house any Federal Contracts Information (FCI). FCI is defined as any information, not intended for public release, that is provided by or generated for the Government under a contract to develop or deliver a product or service to the Government, but not including information provided by the Government to the public (such as on public websites) or simple transactional information, such as necessary to process payments. This definition is very broad, so you should generally assume that if you hold a contract, you have FCI, and that these requirements apply to you. There are 15 safeguarding requirements outlined in the FAR document that are geared towards establishing and maintaining basic cyber hygiene. If you are not meeting these requirements within your organization, this is the place to start.









