×
ADIRA Logo

Adira Solutions LLC

ADIRA FCI module enables Defense Industrial Base (DIB) companies to build, support, and maintain a documented cyber program they can attest to. This documentation provides the necessary tools for building measures that protect Federal Contract Information (FCI) by ensuring proper access control, identification and authentication, media protection, physical protection, system and communications protection, and system and information integrity.

ADIRA FCI
OSA

ADIRA FCI assists CMMC Level 1 contractors and applicable subcontractors who are required to verify through self-assessment that all applicable security requirements outlined in FAR clause 52.204-21 have been implemented.

A CMMC Program Management System, accessible from a single source file within the internet browser, equips both small and large defense contracting businesses with the necessary tools to safeguard Federal Contract Information (FCI) and Controlled Unclassified Information (CUI).

  • By moving away from cumbersome spreadsheets and word documents, users can experience streamlined workflows, enhanced collaboration, and real-time updates—all in one centralized location.
  • This innovative system ensures that you have everything you need at your fingertips, reducing the risk of errors and increasing efficiency.
  • Artifact Management
    • Asset Inventory
    • Authorized User List
  • Management Tools
    • Change Log
    • Policy Management
    • Revision History
    • Shared Responsibility Matrix
  • System Security Plan
    • Continuous Monitoring
    • Plan of Action & Milestones
  • Data Management (json, csv)
    • Export SSP, Artifacts in JSON
    • Export POA&M in CSV
  • Print Affirmation Letters; Reports to PDF
  • Reference materials; and more
×
ADIRA Logo

Adira Solutions LLC

ADIRA FCI-CUI module enables Defense Industrial Base (DIB) companies to build, support, and maintain a documented cyber program they can not only attest to, but also obtain certification status. This documentation provides the essential tools for establishing measures that safeguard Federal Contract Information (FCI) & Controlled Unclassified Information (CUI).

ADIRA FCI-CUI
OSC

ADIRA FCI-CUI assists CMMC Level 2 contractors and applicable subcontractors who are required to verify that all applicable security requirements outlined in NIST SP 800-171 Rev 2 and required via DFARS clause 252.204-7012 have been implemented.

CMMC Level 2 contractors must comply with both Level 1 FCI and Level 2 CUI security requirements. The ADIRA FCI-CUI Module enables quick switching between Level 1 and Level 2 Practices.

  • Artifact Management
    • Asset Inventory
    • Authorized User List
    • Ports, Protocols, & Services
  • Management Tools
    • Change Log
    • Policy Management
    • Revision History
    • Shared Responsibility Matrix
  • System Security Plan
    • Continuous Monitoring
    • Plan of Action & Milestones
  • Data Management (json, csv)
    • Export SSP, Artifacts in JSON
    • Export POA&M in CSV
  • Print Affirmation Letters; Reports to PDF
  • Reference materials; and more
ADIRA Solutions
 

Innovative Solutions for CMMC Compliance

ADIRA SOLUTIONS LLC

Our Services

Rob Ems
Owner & Managing Member
[email protected]
CMMC Certifications
✓ Lead CMMC Assessor
✓ CMMC Professional
✓ Provisional Instructor
Larry Chaffin
Owner & Managing Member
[email protected]
CMMC Certifications
✓ Lead CMMC Assessor
✓ CMMC Professional
✓ Provisional Instructor
 
FCI Module
SPONSORED VERSIONOSA
Free to Use

• Level 1 (FCI)
• 17 Practices
FCI-CUI Module
AVAILABLE OSC
OSA
• Level 1 (FCI)
• 17 Practices
OSC
• Level 2 (CUI)
• 110 Practices

A CMMC Program Management System, accessible from a single source file within the internet browser, equips both small and large defense contracting businesses with the necessary tools to safeguard Federal Contract Information (FCI) and Controlled Unclassified Information (CUI).

• This innovative system ensures that you have everything you need at your fingertips, reducing the risk of errors and increasing efficiency.

Artifact Management » Management Tools » System Security Plan » Data Management (json, csv) » Reference materials; and more

CMMC ESP ModuleFREE

External Service Provider

PRO

This FREE ADIRA module was created for External Service Providers (ESPs) to help satisfy the requirements for Organizational System Assessments (OSAs) when utilizing an ESP. The rule states that the use of an ESP, its relationship to the OSA, and the services provided must be documented in the OSA's System Security Plan (SSP) and described in the ESP's service description and Customer Responsibility Matrix (CRM). This matrix outlines the responsibilities of both the OSA and the ESP concerning the services provided.

Artifact Management » Management Tools » System Security Plan » Data Management (json, csv) » Reference materials; and more

CMMC C3PAO ModuleAVAILABLE
C3PAO
— Made by assessors for assessors.

Say Goodbye to Spreadsheets

The ADIRA C3PAO module, specifically designed for Certified Third-Party Assessor Organizations (C3PAO), overcomes the constraints of traditional spreadsheets.

It provides assessors with a more efficient, accurate, user-friendly solution with team collaboration by enabling efficient data sharing using the JSON file format. This feature allows assessors to exchange information easily while maintaining accuracy and consistency across workflows.

CMMC (Level 2) Assessment Tool

×
ADIRA Logo

Adira Solutions & Services

Adira Solutions LLC is proud to offer multiple CMMC related services. Both owners of Adira Solutions LLC are CCPs, CCAs, PIs and CISSPs. The owners perform all services, there are no other employees, so you know you are always going to get recognized expert CMMC services.

Certification Assessments
 
CCP and CCA Training
  • Instructor services provided to LTPs for CCP and CCA courses
CMMC Assessment Subject Matter Expert (CASME) Advisement Services
  • Listed Services:
    • assist in all requested CMMC preparation efforts
    • participate in regular project management meetings, working groups, educational briefings, technical interchanges, architecture design meetings and reviews, and leadership briefings
    • participate in other events as requested
Basic Readiness Review
  • Listed Services:
    • System Security Plan (SSP) review against the 110 CMMC Practices and Objectives
    • CUI data flow review
    • network topology and diagram review
    • hardware/software asset list review
    • Plan of Action and Milestone (POA&M) confirmation
    • verification the CMMC scope is defined and completed
    • shared responsibility matrix review
    • verification roles are defined and assigned
    • SPRS confirmation
    • An Executive Summary and Assessment Report will be provided as deliverables addressing each of the 110 security controls
NO technical practices are reviewed during a Basic Readiness Review
Gap Assessment — All technical practices are reviewed
  • Listed Services:
    • validation of all technical practices/objectives
    • SSP review against the 110 CMMC controls and objectives
    • CUI data flow review
    • network topology and diagram review
    • hardware/software asset list review
    • Plan of Action and Milestone (POA&M) confirmation
    • verification the CMMC scope is defined and completed
    • shared responsibility matrix review
    • verification roles are defined and assigned
    • SPRS confirmation
    • An Executive Summary and Assessment Report will be provided as deliverables addressing each of the 110 security controls
Mock Assessment — performed in the same manner as an actual CMMC Level 2 assessment
  • Listed Services:
    • validation of all technical practices/objectives
    • SSP review against the 110 CMMC controls and objectives
    • CUI data flow review
    • network topology and diagram review
    • hardware/software asset list review
    • Plan of Action and Milestone (POA&M) confirmation
    • verification the CMMC scope is defined and completed
    • shared responsibility matrix review
    • verification roles are defined and assigned
    • SPRS confirmation
    • An Executive Summary and Assessment Report will be provided as deliverables addressing each of the 110 security controls
CUICO