CMMC Level 2 Gap Assessment
SecureTech’s CMMC Level 2 Gap Assessment is designed to help organizations understand their current alignment with the 110 security practices required under NIST 800-171 and CMMC Level 2.
This fixed-fee assessment evaluates your organization’s existing security controls, documentation, technical environment, and operational processes to identify compliance gaps and readiness status.
Assessment Deliverables
- Review of all 110 controls
- Supplier Performance Risk System (SPRS) Score
- System Security Plan (SSP)
- Plan of Action & Milestones (POA&M)
- Compliance findings and remediation guidance
- One-year subscription to the FutureFeed GRC platform for compliance tracking and documentation management
As part of the engagement, organizations gain access to the FutureFeed GRC platform to centrally manage compliance documentation, policies, procedures, evidence collection, network diagrams, POA&M tracking, and overall compliance progress.
Typical assessment timelines range from 4–6 weeks depending on organizational size, stakeholder availability, and access to required documentation and systems.
Important Scope Note
This engagement focuses on assessment and gap identification. Remediation implementation, project design, POA&M fulfillment, and ongoing compliance management are scoped separately.
Fixed Fee
$12,400