Secureframe & Coalfire launch platform to speed CMMC process

Secureframe and Coalfire have announced a partnership to provide a streamlined pathway to Cybersecurity Maturity Model Certification (CMMC) 2.0 for the Defence Industrial Base as compliance deadlines imposed by the US Department of Defense draw nearer.

This collaboration is intended to address the increasing complexity federal contractors and defence organisations are experiencing in their efforts to achieve and maintain CMMC 2.0 compliance. With pending deadlines and the threat of lost contracts facing contractors who fail to comply, the initiative aims to simplify and accelerate the certification process.

The two companies have launched CMMC.com, a resource platform that offers more than 35 downloadable tools and templates, including System Security Plan (SSP) and Plan of Action and Milestones (POA&M) templates, policy documents, and readiness checklists, which are made available at no cost to defence contractors and stakeholders.

According to Secureframe, the partnership leverages the company's compliance automation technology alongside Coalfire's assessment expertise in federal environments. This combination is designed to provide a comprehensive compliance workflow, from preparation and evidence collection to formal assessment, while reducing the manual effort typically required by up to 70% compared to traditional methods.

Shrav Mehta, Founder and Chief Executive Officer of Secureframe, commented, "By joining forces with Coalfire, we're creating the definitive path to CMMC 2.0 certification. Our combined solutions eliminate the fragmentation and complexity organisations typically face when preparing for CMMC assessments, dramatically reducing time to certification while ensuring the highest standards of cybersecurity readiness."

Bill Malone, President at Coalfire Federal, added, "This partnership represents a significant advancement for the defence industrial base. Together with Secureframe, we're providing organisations with not only the tools to accelerate compliance and protect their missions but also the expert guidance necessary to maintain a robust security posture in an evolving threat landscape."

The new digital platform, CMMC.com, also includes expert commentary and guidance from former federal auditors and compliance practitioners. These resources cover recent developments in the CMMC 2.0 landscape and offer practical advice for navigating certification requirements. The site will also feature timely regulatory updates to help organisations monitor changes in compliance obligations.

The joint offering bundles Secureframe's automated compliance workflow with Coalfire's assessor readiness checks and formal certification process. Contractors are expected to benefit from a reduced certification timeline and improved assessment outcomes, with pre-assessment readiness checks designed to identify and address compliance gaps before undergoing formal evaluations.

The solution is available immediately for organisations planning or undergoing CMMC 2.0 certification processes. Secureframe and Coalfire have stated that this is the first of several anticipated joint solutions aiming to support defence sector suppliers as cybersecurity expectations and requirements become increasingly stringent.

According to the companies, the partnership is aimed at responding to the mounting pressure on defence supply chain contractors to secure their systems and meet regulatory deadlines or risk losing key government contracts.