How Keysight helps defense contractors secure CMMC 2.0 compliance
The exfiltration of unclassified data is a critical issue for the U.S. Department of Defense (DoD), costing the U.S. economy as much as $600 billion per year and putting national defense at risk.
To safeguard sensitive national security information, the Department of Defense launched the Cybersecurity Maturity Model Certification (CMMC) Program to protect the defense industrial bases (DIB) from frequent and increasingly complex cyberattacks.
At the heart of the CMMC initiative is how the DoD addresses the continuing threat posed by threat actors and hostile entities.
Starting October 1st, 2026, all defense contracts will require CMMC. It is a question of when, not if. Once CMMC is incorporated into Defense Federal Acquisition Regulation Supplement (DFARS) 252.204-7021, contractors will require CMMC certification prior to contract award.
Keysight helps you meet CMMC 2.0 requirements in a number of ways including
- Access control
- Awareness and training
- Audit and accountability
- Configuration management
- Identification and authentication
- Incident response
- Risk assessment
- Security assessment
- System and communications protection
- System and information Integrity
It will take time to prepare for a CMMC assessment, so you should prepare now. Security requirements for CMMC Level 2 and Level 3 align with National Institute of Standards and Technology (NIST) Special Publications 800-171 Rev.2 and 800-172, therefore start the work today. Keysight can help you test your network and security to see if your security posture meets these requirements. CMMC 2.0 certification is mapped to three maturity levels: Foundational, Advanced, and Expert.
CMMC Level 2 and 3 requires Government agencies, military, contractors, and subcontractors to have the highest standards of security integrity. That is why Keysight network packet brokers (NPBs) are Common Criteria, FIPS 140–2 and DoDIN APL listed. Keysight can help you meet NIST 800-171 Rev.2 and 800-172 requirements, from access control to system and communications protection by keeping your networks safe.
Keysight Threat Simulator can help you meet a number of CMMC Level 2 and 3 requirements such as CA.L3-3.12.1 Automated penetration testing. Threat Simulator is capable of automating any type of security assessments you can imagine, which allows for nuanced testing and repeatability. It is packed with a comprehensive set of attack and testing scenarios and use cases. It is easy to use, with an intuitive interface and visualization capabilities that make it simple to build complex attack paths.
With the latest automation, Threat Simulator helps you test more security defenses, more frequently, with the same number or fewer resources. The level of detail in remediation guidance allows you to easily generate reports about assessments and remediation suggestions. Integration with numerous platforms and leading SIEM solutions ensures that monitoring and specific remediation suggestions are simple to accommodate with Threat Simulator.
For more information about how Keysight can help you at every level of CMMC 2.0 check out our new Achieving-CMMC-2.0-Compliance White Paper.
Start the certification process today and let Keysight help you test your network and security to determine whether your security posture meets the requirements.
With a long standing, rich history in the aerospace, defense, and government sectors, Keysight is dedicated to safeguarding sensitive information and vital government contracts. It is important that U.S. Government contractors take the necessary compliance steps today to ensure continued DoD business.
For more information contact us at https://www.keysight.com/us/en/industries/government-finance-enterprise-networks/government.html
Keysight is your partner for CMMC 2.0 compliance.