Our commitment is to provide every compliance opportunity for you to comply with the Department of Defense as an approved contractor.
| Compliance Requirement | Purpose | Key Requirements | Applicability |
|---|---|---|---|
| DFARS 252.204-7012 | Protect CUI within contractor systems | NIST SP 800-171 · Cyber incident reporting within 72 hours | Available – All DoD contracts involving CUI |
| DFARS 252.204-7019 | Basic assessment of NIST SP 800-171 implementation | Submit a Basic Assessment in SPRS | Available – All DoD contractors |
| DFARS 252.204-7020 | DoD Medium and High assessments of NIST SP 800-171 | Provide access to DoD for assessments | Available – All DoD contractors |
| DFARS 252.204-7021 | Ensure compliance with CMMC requirements | Obtain CMMC certification | Available – Level 1 & 2 only |
| CMMC 2.0 Level 1 | Basic safeguarding of FCI | Implement 17 basic controls | Available – All DoD contractors handling FCI |
| CMMC 2.0 Level 2 | Advanced protection of CUI | Implement 110 controls aligned with NIST SP 800-171 | Available – All DoD contractors handling CUI |
| CMMC 2.0 Level 3 | Advanced protection of highly sensitive CUI | Implement additional advanced controls beyond NIST SP 800-171 | Not Available at Right Click |
| NIST SP 800-171 | Protect CUI in non-federal systems | Implement 110 security controls across 14 families | Available – All non-federal orgs handling CUI |
| Cyber Incident Reporting | Report cyber incidents to the DoD | Report within 72 hours | Available – All DoD contractors |
| DFARS 252.239-7010 | Requirements for cloud service providers | Meet FedRAMP Moderate baseline · Report cyber incidents affecting DoD data | Available – Cloud service providers handling DoD data |
| NISPOM | Protect classified information | Implement required security measures for classified info | Not Available at Right Click |
| PII Protection | Compliance with privacy & security regulations | Implement privacy and security measures per contracts or federal laws | Available – All contractors handling PII |
We can produce Cybersecurity Insurance Compliance documents so you can qualify in full. Here is our guide:
| Contractor Level | Key Requirements | Insurance Coverage | Right Click Services |
|---|---|---|---|
| Small Contractors | Basic cybersecurity controls, compliance with DFARS 252.204-7012, incident response plan | Basic Cyber Liability Insurance | Right Click Offers Full Compliance for Basic Cyber Security Controls - compliance with DFARS 252.204-7012, incident response plan |
| Contractors Handling FCI | CMMC Level 1 certification, compliance with DFARS 252.204-7019 | Enhanced Cyber Liability Insurance | Right Click Offers Full Compliance for CMMC Level 1 certification, compliance with DFARS 252.204-7019 |
| Contractors Handling CUI | CMMC Level 2 certification, full implementation of NIST SP 800-171 controls, regular security training | Comprehensive Cyber Liability Insurance | Right Click Offers Full Compliance for CMMC Level 2 certification, full implementation of NIST SP 800-171 controls, regular security training |
| Prime Contractors | CMMC Level 3 certification, advanced cybersecurity measures, regular vulnerability assessments | High-Level Cyber Liability and Errors & Omissions (E&O) Insurance | Right Click Offers Full Compliance for CMMC Level 3 certification, advanced cybersecurity measures, regular vulnerability assessments |
| Subcontractors | Compliance with flow-down requirements, relevant CMMC certification based on work scope | Tailored Cyber Liability Insurance | Right Click Offers Full Compliance with flow-down requirements, relevant CMMC certification based on work scope |
| Cloud Service Providers | Compliance with DFARS 252.239-7010, FedRAMP Moderate or High certification | Specialized Cyber Insurance for Cloud Services | Right Click Offers Full Compliance with DFARS 252.239-7010, FedRAMP Moderate or High certification |
| Contractors Handling Classified Information | Compliance with NISPOM, advanced encryption and access controls | High-Level Cyber Liability and Professional Liability Insurance | Right Click Offers Full Compliance with NISPOM, advanced encryption and access controls |
Switching IT providers feels risky, especially if you have been burned by one that got acquired and changed overnight. Here is what does not change with us: the owners, your Squad, and our commitment to protect your business.
Stop wondering what your IT company is doing. Call (714) 790-9412 today or fill out the form below to schedule your appointment.