Arcfield announced it has completed the Cybersecurity Maturity Model Certification process, earning a Level 2 certification through the Joint Surveillance Voluntary Assessment Program.
The weeklong assessment included a review of the company’s cybersecurity policies, practices and documentation, as well as interviews with its IT and security teams and live demonstrations across departments. Arcfield received a perfect score of 110, with no gaps and no corrective actions required.
“The significance of the missions we support requires a failsafe infrastructure that can stand up to even the most sophisticated adversaries,” said Kevin Kelly, chairman and chief executive officer of Arcfield. “Since our inception, we have been designing our systems, processes and policies with CMMC in mind and our perfect score rating is a reflection of our success. We were proud to participate in the voluntary assessment and safeguard our ability to deliver unwavering support to our mission partners.”
The JSVAP allowed authorized CMMC Third Party Assessment Organizations to evaluate defense contractors against NIST 800-171 practices until CMMC 2.0 rulemaking was finalized. Arcfield’s assessment was conducted by Redspin and DIBCAC.
“Arcfield’s journey has been remarkable,” said Brian McManamon, president of Redspin. “The perfect 110 score they received stands as a testament to Arcfield’s steadfast commitment to cybersecurity standards, and we at Redspin, are honored to have been chosen as their C3PAO.”
Arcfield was one of few defense contractors selected as early adopters through the voluntary assessment and has applied CMMC Level 2 processes across its operations since completing the JSVAP in 2023.