Please enable JavaScript in your browser to complete this form.Who is submitting this intake form? *FirstLastWhat is your email address? *EmailConfirm EmailWhat is the client company name? *Who is our main point of contact? *FirstLastWhat is our main point of contact's phone number?What is our main point of contact's email address? *Who is our project sponsor point of contact?FirstLastWhat is our project sponsor point of contact's phone number?What is our project sponsor point of contact's email address?What framework(s) are we servicing? *FedRAMP LowFedRAMP ModerateFedRAMP HighFedRAMP RARStateRAMP LowStateRAMP ModerateStateRAMP HighStateRAMP RARIRS 1075IRS 4812SOC 1 Type 1SOC 1 Type 2SOC 2 Type 1SOC 2 Type 2SOC 3CMMC L1CMMC L2800-30800-37800-53800-66800-60800-61800-63800-115800-161800-171800-1721702017021170251706520000270012700527017270182770190019000331010PCI SAQPCI RoCPCI SSAPCI SSLCACJISLADMFNERC CIPGDPRPrivacy DPIA, CPRA, CCPAC5 Type 1C5 Type 2ENS LowENS MediumENS HighEUCS LowEUCS MediumEUCS SubstantialCommon Criteria - NVLAPFTC SafeGuards RulePenetration TestingPartner Provided Policy DevelopmentPartner Provided Technical WritingOther Not ListedNoneProject Delivery Date? *Does the customer have an expected Kickoff Date? *Is there a timeline diagrams, illustrations or other files that would be helpful? Click or drag files to this area to upload. You can upload up to 5 files. Estimated Client Readiness *Ongoing Client ReadinessSubstantially ReadyBasic ReadinessWet PuppyHosting *AWS HostedAzure HostedGoogle HostedOther Certified Hosting ProviderClient Hosted Data CenterNot ApplicableUnknownLogistics and Travel *Single Site VisitMulti-Site VisitNo Site VisitUnknownWhat Portal Access will client have? *Dedicated PortalExisting PortalSubscribers Portal - GovCloudSubscribers Portal - AWSSubscribers Portal - EUDIY PortalNo Portal Access RequiredAny Portal Access instructions or important details? *What risks have been identified to this project?What are the project deliverables or any other important information?If Security Testing, the details are:External PentestInternal PentestManual PentestingExternal VulnerabilityInternal VulnerabilityAuthenticated TestingUnauthenticated TestingPhishingOn-site testingRemote testingSocial EngineeringPhysical testingSource Code AnalysisPCI ASV testingPCI SSA TestingPCI SSLCA TestingDynamic Code AnalysisStatic Code AnalysisWhat is the frequency of the testing?One TimeMonthlyQuarterlyOtherIf other was chosen, what are the requirements?How many targets if known?ENS & ISO Scoping SpecificsWhat is the scope of the ISMS?Have the boundaries and applicability of the ISMS been determined?YesNoIs the scope of the ISMS documented?YesNoWhat information does the organization need to protect?Have the information assets been identified and classified?YesNoWhat are the external and internal issues relevant to the ISMS?Have the external and internal issues been identified and considered?YesNoWhat are the requirements of interested parties?Have the requirements of customers, suppliers, and other interested parties been identified and addressed?YesNoWhat are the interfaces and dependencies with other organizations?Have the interfaces and dependencies with other organizations been identified and managed?YesNoAre there any exclusions (out-of-scope)?Have any locations, processes, or other relevant headers been excluded from the scope?YesNoCMMC Scoping SpecificsEstimate number of employees:Describe any third-party relationships where CUI is being shared.OSC's Commercial and Government Entity (CAGE) code:If the OSC has a unique identifier (UID) from a previous self-assessment, input the UID:Has an SSP been created and checked for completeness, accuracy, and consistency that addresses all security requirements of NIST SP 800-171 R2?YesNoHas an Assessment Scope been created in accordance with 32 CFR §170.19(c), “CMMC Level 2 Scoping”?YesNoHas the OSC created a list of evidence, artifacts, and OSC personnel and ESP personnel to be made available during the assessment?YesNoHas the OSC achieved a score of 110 for the internal Self-Assessment?YesNoSubmit