R&M is actively preparing to meet new federal cybersecurity standards required for Department of Defense contractors. In the Fall 2025 issue of Alaska Contractor magazine, R&M’s Group Manager of IT, Jere Fisher, shares insight into the firm’s approach to meeting the Cybersecurity Maturity Model Certification (CMMC) requirements.
Fisher explains that R&M is pursuing Level 2 certification under CMMC, which goes beyond the basic Level 1 most firms need for U.S. Army Corps of Engineers (USACE) projects.
“This approach better prepares us for the evolving needs of our clients and the industry.”
R&M is aligning with NIST Special Publication 800-171 Rev. 2, a framework of 110 requirements designed to protect Controlled Unclassified Information (CUI). According to Fisher, many of these steps are simply best practices for a strong cybersecurity program.
“The process can feel overwhelming, but it ultimately strengthens a firm’s security posture and ensures we can continue supporting DoD projects while safeguarding critical information.”
Fisher also encourages other firms to begin preparing early, even if they believe they are already compliant.
“The biggest challenge is time. If your in-house team lacks the required expertise, bring in outside support to get you started.”.
At R&M, this effort reflects a broader commitment to innovation and excellence, ensuring the firm remains a trusted partner for government clients well into the future.
Read the full article in Alaska Contractor magazine to learn more about CMMC requirements and how R&M is helping lead the way: Federal Certification Standards Apply
Stay in the Loop
Sign up for our News & Views email list and get the latest highlights in your inbox
