GLESEC Announces New CMMC Auditing and Fulfillment Platform


ORLANDO, FLORIDA. December 2nd, 2019.  International Cyber-Security Firm GLESEC announces a comprehensive approach to the emerging Department of Defense CYBER SECURITY MATURITY MODEL CERTIFICATION (CMMC) standards’ auditing and fulfillment.  The new platform, part of GLESEC Member Portal Platform (GMPTM v.3.1) adds automatic and manual testing with a number of fulfillment services.  This consolidates cyber security and cyber compliance to assist organizations cut their time, address cyber security incidents and remediation while achieving compliance in a cost-effective manner.

CMMC’s vision is to be a unified Cyber Security Standard for Department of Defense acquisitions to reduce exfiltration of Controlled Unclassified Information (CUI) from the Defense Industrial Base.  It combines various cybersecurity standard and best practices in order to establish several “maturity” levels for an organization; when implemented it is intended to help reduce risk to the organization.  GLESEC’s approach combines the testing (which can be performed by GLESEC’s full set of managed security services and auditing professional services) with the execution of the necessary controls by the same services providing a complete and integrated solution to the CMMC requirement.

We embrace this new standard as another way to help organizations improve their Cyber Security position while complying with a DoD requirement and achieve the maturity level that is required for their business in the most cost-effective manner

said Sergio Heker, GLESEC’s CEO.

The GLESEC offering combines its Orchestrator Service, the Managed GAP Compliance service and auditing services in a way as to provide (a) Visibility and Awareness to top management, (b) Process and Resolution that encompass GLESEC’s business processes and services and (c) Business Optimization thru the automation and outsourcing platform.

GLESEC identified in its Seven Element Model Framework (7eCSMTM) compliance as one of its elements.  The Orchestrator’s GMP platform provides visibility of Compliance with a number of dashboards that map various standards like NIST SP 800-53; NIST SP 800-171 and others that match the CMMC requirements to the contracted services.  Further to this the GAP Compliance Service presents the deviations and establishes a score from current maturity position to requirement.  The information flows from a large collection of managed services contracted by the client and/or by auditing services in order to provide a cost-effective on-going testing and reporting process.

GLESEC continues its on-going process of innovation to provide more value to its clients while leading the market with the largest and most organized set of cyber-security and cyber-compliance services in the industry.

To achieve this, GLESEC Professional Services established an alliance with RB Advisory LLC, specializing in compliance assessment and auditing.  This alliance enhances both organizations by combining all the managed security and professional services of GLESEC with the specialized consulting in compliance of RB Advisory.

The new offering provides a comprehensive solution to the CMMC requirement by:

  • Bringing a complete and integrated solution for on-going testing, recommendations, remediation and mitigation;
  • Providing awareness and visibility of the state of compliance and maturity;

Produce business optimization by helping reduce time-to-resolution of gaps in compliance and remediation with a unique consideration of accountability and costs.

The new features, include:

  • single source for compliance and security, the platform provides a consolidated view of the state of cyber-security and cyber-compliance
  • Get alerted of key security and compliance indicator
  • Seamless integration of the client’s technical teams and GLESEC’s.
  • Unique process optimization by: Accountability, Resource Allocation, Escalation and Cost accounting for all CASES.
  • Real-time visibility of the organization’s Compliance and Maturity
  • Provide business context to security information (vulnerabilities, threats and compliance).

Front-end to over 30 managed security services and a professional services organization, orchestrated in a simple manner that follows GLESEC’s Seven Element Model (7eCSMTM)


GLESEC is a security powerhouse that has been delivering world-class information security since 2003 to organizations across the Americas. GLESEC’s portfolio offers a full suite of auditing, regulatory compliance, monitoring, protection and countermeasure services using best-of-breed, emerging technologies and managed and intelligence security services. Having consolidated this unique set of capabilities under a single umbrella service, organization and proprietary technology platform, we reduce the inherent risk of disjointed teams and bring about the expertise and capabilities that our clients deserve. GLESEC, a privately held company, has Worldwide Headquarters in Princeton, New Jersey. GLESEC operates in both the United States and Latin America. Our clients range from large organizations to multinationals across the Americas.