Waterleaf International LLC

Engineers and Scientists that are SME’s in Cybersecurity provide:

  1. RPO services for compliance advisory.
  2. Provisional Assessors
  3. C3PAO – services for assessment management and compliance


We are engineers and scientists that solve problems as government contractors much like yourselves. A key focus areas is cybersecurity and to meet the compliance requirements of both NIST, CMMC and others we decided to do a deep dive into the process, methodologies and practice to be proficient at meeting these requirements. Needless to say, we were thorough.


As we interviewed companies to provide services for us, we found great variance in practices, prices, advisory services, and sometimes contradictory advice. We then made the decision to develop a practice that follows scientific and engineering rigor to; automate, update to current changes with NLP and ML, price below the market and deliver services in a timely manner.


We did this to the point that we are one of the few companies to have all three CMMC certifications [RPO, Provisional Assessors and C3PAO].


Our teams are experienced in preparing organizations for cybersecurity audits, regulatory compliance, and certification readiness. We bring to bear over 20 years of audit and compliance work. Certification readiness and preparation are often the most complex and laborious parts of the certification process. We will assess your readiness, utilize software, custom tools and know-how to prepare a plan, review the plan and execute the plan to meet your objectives on time and on budget.

In addition to CMMC, we have experience with many regulations and frameworks such as HIPAA, NIST 800-171, 53, 82, NIST Cybersecurity Framework, CIS and more. We offer complete cybersecurity as a service solutions www.cyberleaf.io , Virtual CISO services, security risk assessments, development of policies and procedures, Cybersecurity Awareness Training, Incident Response Management, Vulnerability Assessments, Penetration Testing, and more.

Focus on your business. Meet your compliance requirements. Be protected from cyber breaches and insider threats. Obtain assessments for your enterprise or your supply chain partners.