PHOENIX, AZ — June 26, 2020 – Prevalent, Inc., the company that takes the pain out of third-party risk management, today announced that it is the first third-party risk management company to offer questionnaires for all five levels of the CMMC to certified third-party audit organizations (C3PAOs) and Department of Defense (DoD) contractors. The leader in third-party risk management provides the only solution to assess, monitor and remediate risks across all CMMC domains and practice areas.
“Companies are under tremendous pressures to ensure that their supply chains are secure and resilient,” stated Brad Hibbert, chief strategy officer for Prevalent. “In today’s environment it’s more important than ever to ensure that third-party suppliers are compliant with DoD standards. Prevalent prides itself on providing contractors and auditors with questionnaires to support all of the certification levels needed to ensure a secure supply chain.”
On January 31, 2020, the Office of the Under Secretary of Defense for Acquisition and Sustainment in the DoD released v1.0 of the CMMC. Developed to serve as a single cybersecurity standard for all future DoD acquisitions, CMMC requires that each of the more than 300,000 DoD contractors become CMMC certified beginning in October 2020, with a five-year phase-in and renewals every three years after that.
The Prevalent Third-Party Risk Management Platform simplifies and accelerates risk identification and audit reporting with a single cost-effective platform for all CMMC questionnaire levels. The solution automatically creates, quantifies and contextualizes risks from questionnaire responses in order to streamline the risk assessment process and provides prescriptive guidance and recommendations to contractors in order to improve their security hygiene and compliance standing. The platform improves visibility with clear scoring and compliance status against accepted DoD standards and ensures auditors and contractors use the most current questionnaires with automatic updates. The platform enables C3PAO auditors and DoD contractors to assess and demonstrate CMMC compliance.
With Prevalent, CMMC certified auditors can use the platform with all five levels of CMMC controls questionnaires included. Certified auditors can:
Additionally, any DoD contractor can use the platform to conduct a pre-assessment prior to the formal audit. With this access, DoD contractors can:
For more information on how Prevalent helps to secure the DoD supply chain, please visit the CMMC compliance resource page or request a demo.
Prevalent takes the pain out of third-party risk management (TPRM). Companies use our software and services to eliminate the security and compliance exposures that come from working with vendors, suppliers and other third parties. Our customers benefit from a flexible, hybrid approach to TPRM, where they not only gain solutions tailored to their needs, but also realize a rapid return on investment. Regardless of where they start, we help our customers stop the pain, make informed decisions, and adapt and mature their TPRM programs over time.
Angelique Faul, 513-633-0897, firstname.lastname@example.org