Map controls to Cybersecurity Maturity Model Certification (CMMC) to optimize and secure your cloud environment

The CMMC is the next stage in the Department of Defense's (DoD) efforts to properly secure the Defense Industrial Base (DIB). The DoD announced in mid-2019 that it would be creating a cybersecurity assessment model and certification program that third-party companies doing business with DoD or certain government agencies will need to meet. It’s estimated that more than 300,000 organizations will require assessment and certification to one of the five CMMC levels. From small businesses providing HVAC maintenance to major defense contractors working on the newest military hardware, every member of the DoD supply chain will need to address CMMC.
 
CloudHesive Secure Workplace for CMMC is a turnkey solution that utilizes Amazon WorkSpaces to deliver a CMMC compliant solution for customers looking to achieve CMMC certification. The solution runs on top of Amazon Web Services (AWS) GovCloud using Amazon WorkSpaces for secure virtual desktops, Microsoft Office 365 Government Community Cloud (GCC) High to address email and data loss prevention (DLP) compliance functions and several security controls to address cybersecurity compliance. This solution is backed by a managed services offering that meets the CMMC management requirements, so ongoing maintenance and support of the environment is delivered through the solution.
CloudHesive

AWS Partner Network | Competency

Availability

United States

Benefits

Jumpstart your implementation

Templated solution allows for a short path to compliance, leveraging a predesigned starting point.

CMMC process and control mapping

Prebuilt solution that has critical CMMC process and control functions defined and documented.

Aligned to common security controls

Enhance the security of CMMC workloads with prebuilt architecture and security controls.

Sold on a monthly per-seat price

CloudHesive provides a monthly per-seat model to bundle all costs into a per-user model.

  • How it works
  • Key activities
  • Customer contribution
  • About this consultant
  • Architecture diagram
  • How it works
  • CloudHesive's consulting offer includes a mix of proprietary and third-party software powered by AWS products including Amazon WorkSpaces, Amazon Elastic Compute Cloud (Amazon EC2), and other services. The consulting offer is a hybrid of a SaaS platform, a consulting engagement, and a managed services engagement, providing a near-turnkey CMMC-compliant solution that meets security control sets and operational processes required by the DoD. Understanding that the requirements for CMMC for each agency or institution will vary, it is capable of functioning as a standalone (it has no interdependencies) or being integrated within your existing enterprise footprint. Secure Workplace for CMMC Compliance supports net-new deployments of an end-user computing solution, migration from an existing end-user computing solution, or even optimization of your current Amazon WorkSpaces.

    The starting point for the consulting engagement is for CloudHesive to understand your requirements, weigh the trade-offs between them, and obtain cross-functional consensus to the selected approach. A standalone implementation begins with a typical Amazon WorkSpaces deployment (including Amazon Virtual Private Cloud [Amazon VPC], AD Connector/Managed AD, and Amazon WorkSpaces), Office 365 GCC High, and CloudHesive's Centricity Secure Workplace for Government solution. CloudHesive will add security controls aligned to your organizational compliance controls including multifactor authentication, endpoint security, content filtering, DLP, and operational monitoring and management. Alongside the design and deployment, CloudHesive will leverage a standard control mapping based on CMMC or National Institute of Standards and Technology (NIST) controls, or will map a control and/or multiple control sets of your choosing. CloudHesive will work to design an operational model, ensuring appropriate policies, training and controls are identified and implemented.  

  • Key activities
  • 1) Requirements

    Review customer requirements and determine deployment approach for standalone or integrated services.

    2) CMMC control process mapping

    Review of controls, mapping to process, policy, training, and technology, or leveraging pretemplated mappings.

    3) Prerequisites

    If needed, implement supporting services and integrations to existing enterprise environment.

    4) Software deployment

    Provision baseline services including Amazon WorkSpaces, Office 365, and customer software.

    5) Acceptance testing

    Bundles and images used to launch validation environment along with customer software tested by customer.

    6) Audit review

    Verify that controls implemented meet requirements for CMMC level and provide third-party auditor recommendations.

    7) Deployment

    Deployment begins; Amazon WorkSpaces launches; users migrate; and application support period begins.

    8) Steady state

    Ongoing tiered support provided throughout managed services term, in addition to working with a 3rd party auditor on certification.

  • Customer contribution
  • CMMC requirements

    Customers provide a background on CMMC certification needs and systems profile.

    Subject-matter experts

    Customers can offer resources that understand existing applications and systems requiring CMMC certification.

    Integration

    Based on integration approach, customers may opt to integrate with their existing enterprise platforms.

    Software installation

    Based on software deployment approach, customers may opt to install their software on predefined images.

    Acceptance testing

    Act as subject-matter experts to facilitate testing of the specific environment.

    Migration support

    Provide one or more resources to manage end-user communication and activities during migration.

    Post-migration support

    Provide one or more resources to manage end-user communication and activities post-migration.

    Project audit lead

    Provide a project lead to coordinate third-party audit activities with CloudHesive team.

  • About this consultant
  • CloudHesive is an AWS Partner offering consulting services and an AWS Managed Service Provider Partner and has achieved a number of AWS Competencies and recognitions, including the AWS Digital Workplace Competency and the Authority to Operate on AWS designation. CloudHesive was founded in 2014 by veterans of the cloud technology space and helps customers adapt and transform their organizations by leveraging the power of the public cloud ecosystem through consulting and next generation managed services with a focus on operational excellence, security, reliability, performance efficiency, and cost optimization. CloudHesive serves customers in North America, South America, and beyond, with headquarters in Fort Lauderdale, FL, and offices in Norfolk, Virginia; Santiago, Chile; and Buenos Aires, Argentina.

    CloudHesive's superpowers align to customers' enterprise needs, ranging from business tools such as Secure Workplace for CMMC or the Centricity Secure Workplace for Government AWS Solutions Consulting Offer to application platforms supported by CloudHesive's Next-Generation Managed Services practice. CloudHesive supports its customers' Centers of Excellence via governance, cost management, and information security services and support.

  • Architecture diagram

Ready to get started?

AWS Partner Highlights

CloudHesive’s AWS validated qualifications, customer references, and office locations.

AWS Competency Details

CloudHesive has demonstrated deep AWS technical expertise and proven customer success.

Explore icon
Explore all Consulting Offers

Browse our portfolio of Consulting Offers to get AWS verified help with solution deployment.

Learn more 
Build icon
Deploy a solution yourself

Browse our library of AWS self-deploy solutions to common architectural problems.

Learn more 
Find an APN Partner icon
Find an AWS Partner

Engage with AWS Partners for secure, innovative, and cost-effective custom solutions that leverage the power and scalability of AWS services to meet your needs.

Learn more