Mechanical Solutions is officially CMMC Level 2 certified! We successfully completed our CMMC Level 2 C3PAO assessment on February 4, 2026 and are proud to share that we met all NIST 800-171 rev 2 requirements and NIST 800-171A rev 2 related assessment objectives.
Upon receiving our certification, Mechanical Solutions was among the (estimated) first 1% of Level 2 certified companies in the Defense Industrial Base, out of the 80,000–115,000 companies expected to be required to achieve Level 2 certification as the phased rollout continues.
Mechanical Solutions is strongly dedicated to securing the Defense Industrial Base. Our leadership team has set a clear mission that it is paramount for us to develop and maintain the proper security controls to protect the Department of War information residing in our environment.
“We chose to pursue a Level 2 third-party CMMC assessment ahead of many organizations because we are committed to implementing and maintaining strong security controls that protect and safeguard the information in our systems and within our physical environment— including the processing, storage, and transmission of Department of War Controlled Unclassified Information (CUI). Protecting the United States of America and our nation’s warfighters is of the upmost priority to our organization.”
– Megan Marscher, Cybersecurity Officer, Director of CMMC
Why is CMMC required?
History shows that foreign adversarial countries have consistently tried to infiltrate data from the United States of America. As a result, the Department of War (“DOW”) has mandated that federal contractors and subcontractors are required to evidence that the company has the appropriate technical and non-technical controls in place (in conjunction with meeting the requirements and assessment objectives in NIST 800-171/171A rev 2) to protect sensitive DOW data identified as Federal Contract information (“FCI”) and Controlled Unclassified Information (“CUI”).
DFARS 252.204-7012 requires applicable federal contractors and subcontractors to comply with NIST 800-171 rev 2. CMMC is a verification program. CMMC requires assessments (self or third party) be performed to verify a company can evidence that sufficient controls are implemented and operating effectively to comply with the requirements and assessment objectives in NIST 800-171/171A rev 2. This solidifies the security of U.S sensitive data.
CMMC Level 2 certification is an integral part of successfully serving the Department of War, DOW Primes and/or DOW Subcontractors, regarding projects that contain control unclassified information. Mechanical Solutions is here to help! Check out the top-tier services and products Mechanical Solutions provides:
Please contact Tim Lebo, Sales Engineer, at tim.lebo@mechsol.com (or 973-326-9920 ext. 154) for any DOW sales opportunities or related questions.
Please contact Megan Marscher, Cybersecurity Officer, Director of CMMC, at megan.marscher@mechsol.com for any CMMC compliance related questions.
