Cybersecurity Maturity Model Certification Process (CMMC)

PGC recognizes the critical importance of cybersecurity and is committed to implementing best practices to safeguard sensitive information. To enhance the security of Controlled Unclassified Information (CUI) and strengthen the overall cybersecurity posture of the Defense Industrial Base (DIB), the Department of Defense is transitioning to a new cybersecurity framework called the Cybersecurity Maturity Model Certification (CMMC).

To prepare for this transition, PGC is actively working to further implement the NIST 800-171 standard, a foundational guideline for protecting sensitive information. The CMMC framework consists of five security levels, from basic to advanced, acknowledging that a one-size-fits-all approach is unsuitable for the diverse range of contractors within the DIB. This model ensures appropriate cybersecurity measures and rigorous verification processes are followed.

To support this initiative, PGC is collaborating with third-party experts to ensure that all 130 cybersecurity domains are thoroughly addressed and met. We are committed to a comprehensive approach that meets compliance requirements and strengthens our cybersecurity infrastructure. We anticipate an implementation plan spanning approximately 18 months, during which we will continuously assess and enhance our cybersecurity practices to protect sensitive information effectively. Through these efforts, PGC aims to contribute to a more secure environment for all stakeholders involved in the defense sector.