Map controls to Cybersecurity Maturity Model Certification (CMMC) to optimize and secure your cloud environment
Jumpstart your implementation
Templated solution allows for a short path to compliance, leveraging a predesigned starting point.
CMMC process and control mapping
Prebuilt solution that has critical CMMC process and control functions defined and documented.
Aligned to common security controls
Enhance the security of CMMC workloads with prebuilt architecture and security controls.
Sold on a monthly per-seat price
CloudHesive provides a monthly per-seat model to bundle all costs into a per-user model.
How it works
About this consultant
How it works
CloudHesive's consulting offer includes a mix of proprietary and third-party software powered by AWS products including Amazon WorkSpaces, Amazon Elastic Compute Cloud (Amazon EC2), and other services. The consulting offer is a hybrid of a SaaS platform, a consulting engagement, and a managed services engagement, providing a near-turnkey CMMC-compliant solution that meets security control sets and operational processes required by the DoD. Understanding that the requirements for CMMC for each agency or institution will vary, it is capable of functioning as a standalone (it has no interdependencies) or being integrated within your existing enterprise footprint. Secure Workplace for CMMC Compliance supports net-new deployments of an end-user computing solution, migration from an existing end-user computing solution, or even optimization of your current Amazon WorkSpaces.
The starting point for the consulting engagement is for CloudHesive to understand your requirements, weigh the trade-offs between them, and obtain cross-functional consensus to the selected approach. A standalone implementation begins with a typical Amazon WorkSpaces deployment (including Amazon Virtual Private Cloud [Amazon VPC], AD Connector/Managed AD, and Amazon WorkSpaces), Office 365 GCC High, and CloudHesive's Centricity Secure Workplace for Government solution. CloudHesive will add security controls aligned to your organizational compliance controls including multifactor authentication, endpoint security, content filtering, DLP, and operational monitoring and management. Alongside the design and deployment, CloudHesive will leverage a standard control mapping based on CMMC or National Institute of Standards and Technology (NIST) controls, or will map a control and/or multiple control sets of your choosing. CloudHesive will work to design an operational model, ensuring appropriate policies, training and controls are identified and implemented.
Review customer requirements and determine deployment approach for standalone or integrated services.
2) CMMC control process mapping
Review of controls, mapping to process, policy, training, and technology, or leveraging pretemplated mappings.
If needed, implement supporting services and integrations to existing enterprise environment.
4) Software deployment
Provision baseline services including Amazon WorkSpaces, Office 365, and customer software.
5) Acceptance testing
Bundles and images used to launch validation environment along with customer software tested by customer.
6) Audit review
Verify that controls implemented meet requirements for CMMC level and provide third-party auditor recommendations.
Deployment begins; Amazon WorkSpaces launches; users migrate; and application support period begins.
8) Steady state
Ongoing tiered support provided throughout managed services term, in addition to working with a 3rd party auditor on certification.
Customers provide a background on CMMC certification needs and systems profile.
Customers can offer resources that understand existing applications and systems requiring CMMC certification.
Based on integration approach, customers may opt to integrate with their existing enterprise platforms.
Based on software deployment approach, customers may opt to install their software on predefined images.
Act as subject-matter experts to facilitate testing of the specific environment.
Provide one or more resources to manage end-user communication and activities during migration.
Provide one or more resources to manage end-user communication and activities post-migration.
Project audit lead
Provide a project lead to coordinate third-party audit activities with CloudHesive team.
About this consultant
CloudHesive is an AWS Partner offering consulting services and an AWS Managed Service Provider Partner and has achieved a number of AWS Competencies and recognitions, including the AWS Digital Workplace Competency and the Authority to Operate on AWS designation. CloudHesive was founded in 2014 by veterans of the cloud technology space and helps customers adapt and transform their organizations by leveraging the power of the public cloud ecosystem through consulting and next generation managed services with a focus on operational excellence, security, reliability, performance efficiency, and cost optimization. CloudHesive serves customers in North America, South America, and beyond, with headquarters in Fort Lauderdale, FL, and offices in Norfolk, Virginia; Santiago, Chile; and Buenos Aires, Argentina.
CloudHesive's superpowers align to customers' enterprise needs, ranging from business tools such as Secure Workplace for CMMC or the Centricity Secure Workplace for Government AWS Solutions Consulting Offer to application platforms supported by CloudHesive's Next-Generation Managed Services practice. CloudHesive supports its customers' Centers of Excellence via governance, cost management, and information security services and support.
Ready to get started?
Browse our portfolio of Consulting Offers to get AWS verified help with solution deployment.
Browse our library of AWS self-deploy solutions to common architectural problems.
Engage with AWS Partners for secure, innovative, and cost-effective custom solutions that leverage the power and scalability of AWS services to meet your needs.