SaltyCloud streamlines CMMC compliance with their GRC Assessment Platform

SaltyCloud Research Team

Updated February 27, 2024  •  Read Time 3 mins

Austin, Texas: SaltyCloud, provider of Isora GRC, the single, end-to-end Governance, Risk, and Compliance (GRC) Assessment Platform, announced new functionality to help Department of Defense (DoD) contractors manage NIST 800-171 and Cybersecurity Maturity Model Certification (CMMC) pre-assessments.

The DFARS Interim Rule went into effect on November 30, 2020, requiring all 300,000+ Defense Industrial Base (DIB) companies to submit a NIST 800-171 score using the DoD Assessment Methodology, prepare for the CMMC, and get certified by a CMMC Third-Party Assessor Organization (C3PAO). 

Understanding the needs of other highly regulated industries, SaltyCloud released the new functionality to streamline the resource-intensive DoD requirement. Isora GRC, built in the United States of America by domestic security engineers, allows users to automate the processes involved in conducting NIST 800-171 assessments and CMMC pre-assessments, securely collecting data, analyzing data, and creating dashboards. Users can also export their assessment results into System Security Plans (SSPs) and Plan of Actions & Milestones (POA&Ms).

“Preparing for the CMMC and aligning an organization with NIST 800-171 requires a lot of resources, both time and money, from DoD contractors,” said Andrew Scheifele, CEO and Co-Founder of SaltyCloud. “Our GRC Assessment Platform, Isora GRC, makes it easier to manage compliance across an organization without the need for spreadsheets or dedicated teams. We believe our solution will not only make compliance much more achievable for DoD contractors but also promote cybersecurity maturity across the DIB.”

CMMC Compliance on Isora GRC is available now. More information is available here.

Other Relevant Content

Say hello to powerfully simple GRC

The easier solution for mitigating risk, improving compliance, and building resilience