CMMC & NIST SP800-171 (Cybersecurity) & JCP Enhanced Validation
The Cybersecurity Maturity Model Certification (CMMC) is an assessment framework and assessor certification program designed to increase the trust in measures of compliance to a variety of standards published by the National Institute of Standards & Technology, (NIST).
The purpose of the CMMC is to verify that the information systems used by the contractors of the United States Department of Defense to process, transmit or store sensitive data are compliant with the mandatory information security requirements. The goal is to ensure appropriate protection of controlled unclassified information (CUI) and federal contract information (FCI) that is stored and processed by a vendor.
The framework provides a model for contractors in the Defenses Industrial Base, (DIB), to meet the cyber security requirements from NIST SP800-171, namely protecting Controlled Unclassified Information in Nonfederal Systems and Organizations.
CMMC Status Report
- CFC has registered a self-assessment in the DoD’s SPRS, (Supplier Performance Risk System).
- Posted last assessment score 10/11/2024: (Score = 110)
- Currently anticipating a DoD CMMC Level 2 audit in June 2026.
- Working against our POAM’s in CFC’s SSP, (System Security Plan).
- Anticipate completion of the POAM’s, (Plan of Action & Milestones) by April 2026.
JCP Enhanced Validation
Century Fasteners Corp. is DD2345 certified to access DLA export-controlled data. The embedded DLA-JCP Enhanced Validation (DEV), dated December 30, 2025, approves Century Fasteners to access export-controlled technical data. Century Fasteners Enhanced Validation (DEV) is compliant to DFARS 252.204-7012.
(Click image to open PDF document)
Rich Monahan
Director of IT
rmonahan@centuryfasteners.com