Today CSCI announced that it has achieved Cybersecurity Maturity Model Certification (CMMC) Level 2, placing the company among the top 0.1 percent of more than 300,000 contractors within the Department of Defense’s industrial base. The certification comes as the DoD begins enforcing the 2025 CMMC Final Rule, which now requires Level 2 certification for any contractor handling controlled unclassified information (CUI).
“Since founding CSCI in 2002, we have been steadfast in our commitment to doing what is right and ensuring the security of our federal partners’ missions,” said Michele Durante, Founder and CEO of CSCI. “Joining the small fraction of companies certified at CMMC Level 2 is a powerful validation of our team’s discipline, readiness, and unwavering focus on safeguarding sensitive information that protects our nation.”
The certification followed an extensive, years-long effort led by CSCI’s internal IT team in partnership with departments across the company. The process included rigorous system evaluations, enhanced controls, documentation refinements, and a full third-party audit.
“Cybersecurity is one of the primary battlefields of the twenty-first century,” said Tyler Nugen, CSCI’s Systems Administrator and a CMMC Certified Professional (CCP) and CMMC Certified Assessor (CCA). “With the rise of AI, automation, and cyber-enabled espionage, even small contractors can be leveraged to access sensitive military data. CMMC Level 2 is the standard our nation needs, and CSCI is proud to be among the first small businesses to meet it.”
