Cybersecurity – Kosmo Machine attains Level 2 of CMMC

April 21, 2022

Sandston, VA – April 18, 2022 … Kosmo Machine Inc. today announced that it has attained Level 2 – Advanced Status – of the Cybersecurity Maturity Model Certification (CMMC), a required status of sub-contractors active in Federal government contracting.

CMMC attainment became a topic of discussion and an action item for Kosmo Machine early in the spring of 2017. This flow-down requirement is intended to control and protect unclassified information residing outside of Federal government systems from bad actors. NIST SP-800-171 reflects 110 security controls detailed in the National Institute of Standards and Technology Special Publication. Ensuing years brought regulation amendments and extensions of implementation dates – mostly due to the evolving cybersecurity threat landscape and related technology advancements.

For some, these delays could be interpreted as favorable as it has allowed unassessed subcontractors to continue bidding and working on Federal projects. Current estimates for the start of CMMC compliance are Q2 of 2023 and Kosmo Machine welcomes this implementation and accreditation requirement, across the board for all federal government suppliers, to further enhance national security.

Mike Redden, Kosmo Machine’s President said, “The investment for a small business to attain CMMC Level 2 is exorbitant yet essential. The efforts have required significant financial and resource commitments by our small business, but to have Federal suppliers and sub-contractors like Kosmo Machine step up and be counted is essential for the protection of our nation’s information and systems, and the security of the people who protect us.”

Redden added, “It has been a significant learning experience, but more importantly, it was the right thing to do. Now, we look forward to the implementation and progression of the requirements.”

In an extract from the Federal News Network, Jesse Salazar, Deputy Assistant Secretary of Defense for Industrial Policy said, “CMMC 2.0 will dramatically strengthen the cybersecurity of the Defense Industrial Base (DIB’s). By establishing a more collaborative relationship with industry, these updates will support businesses in adopting the practices they need to thwart cyber threats while minimizing barriers to compliance with DoD requirements.”

Established in 1976, Kosmo Machine Inc. is a contract manufacturer of precision machine components and a specialized service provider to the energy, aerospace, defense, and advanced fibers industries.

The company relocated in 2013 to a 62,500 sqft. climate-controlled facility near Richmond International Airport. Since the move, the company has invested in excess of $7M towards equipment, technology, and staff development to remain at the forefront of precision manufacturing trends and best practices.

Kosmo Machine continues to maintain continuity with all federal or commercial contract requirements while safeguarding our nations assets.
For additional information contact:
Mike Redden – – (804) 326-6819

The owner of this website has made a commitment to accessibility and inclusion, please report any problems that you encounter using the contact form on this website. This site uses the WP ADA Compliance Check plugin to enhance accessibility.