A.B. Closing Corporation D.B.A., Kavaliro

Kavaliro is a CMMC-AB Registered Provider Organization (RPO). This means we are accredited to provide CMMC consulting and support to Organizations Seeking Certification (OSC) in the Defense Industrial Base (DIB). We do NOT conduct CMMC audits as this would be in conflict with our pre-assessment services.

We provide a wide range of technology services to our government contractor clients, with cyber security services being an important focal point. We routinely deploy the safeguards needed to comply with NIST, DFARS and CMMC including:

  • NIST, DFARS, CMMC Assessments and Remediation
  • Intrusion Detection and Response
  • Advanced Endpoint Protection
  • Microsoft Office 365
  • Business Continuity/Disaster Recovery
  • IT User Policies
  • Security Incident Response Plan
  • Multi Factor Authentication
  • Security Awareness Training


ASSESSMENT/SSP/POAM - The first step is to conduct a detailed assessment of your current environment. A system security plan (SSP) will be created to document the security measures that need to be put in place, and a Plan of Action and Milestones (POA&M) will outline the action items needed to reach compliance.

REMEDIATION– The next step is to address the items called out in the POA&M. This could be as simple as implementing a few minor changes, or as complex as doing an overhaul on outdated systems.

COMPLIANCE MONITORING & MAINTENANCE – Finally, ongoing cyber security monitoring and incident response can be provided by Kavaliro. Cyber incidents must be reported to the DoD within 72 hours, all systems and controls must be constantly assessed and maintained to remain compliant.