News release

RSM Earns Cybersecurity Maturity Model Certification Third-Party Assessor Candidate Designation

May 17, 2021
May 17, 2021
0 min. read

Andreia DeVries, National Public Relations Manager,, 212.520.1266
for media use only 

RSM US LLP (“RSM”) – the nation’s leading provider of audit, tax and consulting services focused on the middle market – has earned the candidate designation as a Cybersecurity Maturity Model Certification (CMMC) Third-Party Assessor Organization (C3PAO) by the CMMC Accreditation Body. RSM is one of a few national firms to be approved as a C3PAO to date.  

The CMMC framework is a security standard composed of five maturity levels that reflect the design and reliability of an organization’s cybersecurity posture to protect controlled unclassified information (CUI). With more than 350,000 defense contractors currently serving in the Defense Industrial Base, in an effort to minimize risk, the Department of Defense (DOD) will require organizations to undergo a readiness evaluation and CMMC assessment by an approved C3PAO to conduct business with the DOD.

“At RSM, we have a long history of servicing government contractors by helping them meet evolving oversight requirements and regulations,” said Charles Barley Jr., national government contracting cyber leader with RSM US LLP. “This candidate designation means that RSM’s team of cybersecurity professionals and the broader firm are approved to help defense contractors (in particular middle market organizations) define, assess and implement a cybersecurity program in line with the Department of Defense (DOD) regulatory requirements. While the mandated deadline might seem far away, beginning this calendar year, the DOD is expected to begin requiring organizations to become certified prior or at the point of contract award / renewals. RSM is prepared to make sure our clients meet the underlying CMMC requirements.”

Related services that RSM is currently providing include CMMC readiness/gap assessments, cybersecurity remediation assistance– which includes building and implementing security programs, and defining and implementing secure technology  environments among other activities, making RSM a one-stop-shop for your CMMC needs.  

For more information about RSM’s cybersecurity and CMMC-related services, visit our website.


RSM’s purpose is to deliver the power of being understood to our clients, colleagues and communities through world-class audit, tax and consulting services focused on middle market businesses. The clients we serve are the engine of global commerce and economic growth, and we are focused on developing leading professionals and services to meet their evolving needs in today’s ever-changing business environment.

RSM US LLP is the U.S. member of RSM International, a global network of independent audit, tax and consulting firms with 51,000 people across 123 countries. For more information, visit, like us on Facebook, follow us on Twitter and/or connect with us on LinkedIn.