Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Manufacturing Extension Partnership (MEP)

embeddedTS Saves Time and Money with Arizona MEP’s Structured CMMC Compliance Program

With the help of: Arizona Manufacturing Extension Partnership (Arizona MEP)

About

For more than 40 years, embeddedTS has designed and manufactured single-board computers for commercial and industrial applications. At its Fountain Hills, Arizona, facility, the company’s 40 employees design and test boards and software, manage logistics, and provide customer support. embeddedTS serves a broad range of industries—from energy and transportation to defense—through both off-the-shelf and custom computer solutions. With an expected increase in aerospace and defense contracts, maintaining compliance with federal cybersecurity standards has become a top priority.

The Challenge

When a key customer informed embeddedTS that future contracts would require compliance with the Cybersecurity Maturity Model Certification (CMMC), the team knew they needed to act. CMMC is the U.S. Department of Defense framework that protects Federal Contract Information (FCI) and Controlled Unclassified Information (CUI) throughout the supply chain. Although embeddedTS had previously attended Arizona MEP workshops, they now faced a complex compliance project and turned to Arizona MEP for hands-on support.

Thanks to Arizona MEP assistance, we’ve strengthened our capabilities and are now far better positioned to compete for subprime bids and contracts. We’re already seeing increased interest and engagement as a direct result of our recent efforts.

— Alan Brown, Marketing/Communications Manager

MEP's Role

Initially, embeddedTS believed it would need to “harden” its entire facility to meet CMMC requirements, a step that would have been cost-prohibitive. Through Arizona MEP’s structured CMMC compliance program, the team found a more efficient, less costly solution. Using Arizona MEP’s CMMC Gap Assessment and collaborative planning sessions, cybersecurity experts helped the company identify where FCI and CUI were accessed and stored. The result was a streamlined, cost-effective implementation plan that strengthened cybersecurity while preserving company culture and workflows.

Results

Today, embeddedTS has completed the NIST SP 800-171 certification process, with all 110 controls in place, and has submitted its Supplier Performance Risk System (SPRS) score for CMMC Level 2. A mock audit is planned for early 2026, followed by an official certification audit later that year. The company has retained business with its prime contractor and secured two additional projects as a direct result of its compliance progress.

Results

Enclave approach vs entire facility saved at least $500,000 for equipment and manpower
Certification allows access to critical DoW and aerospace industry markets
Employees more cautious in monitoring overall cybersecurity

Congressional District

5th District

6th District

Download PDF

Download Success Story PDF

MEP Center Contact

100 N. 7th Avenue
Suite 400
Phoenix, AZ 85007-2770
United States

+1 (602) 845-1200

davidg [at] azcommerce.com

https://www.azcommerce.com/programs/arizona-mep/

Created February 12, 2026

Was this page helpful?