Deciding to work with TMAC was one of the best decisions we made in 2019. Their team, including Darold Tippey, were knowledgeable, responsible, accountable and instrumental in us achieving our goals of moving toward compliance for the DOD.
TMAC began their work with Broadwing’s management team and their IT outsource group to lay out a plan and timeline to get compliant. This effort was initially funded by a DOD OEA (Office of Economic Adjustment) grant given to The University of Texas at Arlington but continues as a TMAC project.
TMAC provided critical leadership for Broadwing’s management team by assisting them in completing a gap assessment. This assessment gave Broadwing Aviation a current state versus future state view of their business in relation to the DFARS and CMMC requirements.
Next was a roadmap for compliance, which is a process to develop all key requirements, step-by-step instructions and guidance on how to successfully reach the desired future state. For the first step TMAC developed a map on how DOD Controlled Unclassified Information (CUI) flows through Broadwing’s organization. TMAC then created transit, manipulation, and storage processes to ensure proper security protocols (PSP) are followed to protect this critical information. By utilizing this map TMAC and Broadwing were able to set up PSPs to ensure that this information was protected. TMAC and Broadwing are now developing the system and site security plan which is a very detailed plan of the site and network to optimize protection of CUI for DOD.