CMMC L1 Readiness & Documentation Baseline.

Overview Practical Baseline for Contract Eligibility.

Tier 01 establishes a clear compliance starting point for small and mid-sized Department of War contractors. RSDFED helps identify where Federal Contract Information may exist, review basic cybersecurity practices, organize required documentation, and support preparation for a CMMC Level 1 self-assessment.

This tier provides a practical baseline, gap summary, and recommended next steps before moving into Tier 02 Implementation or Tier 03 Managed Compliance Support.

What we do Engagement Steps.

1. FCI inventory walkthrough. We map where Federal Contract Information lives in your systems, workflows, and supplier touchpoints.
2. Cybersecurity practice review. Side-by-side against CMMC Level 1's 17 required practices, plain-English.
3. Documentation baseline pack. Policies, procedures, and inventories organized in a format that survives audit, not just a binder of templates.
4. CMMC L1 self-assessment prep. Walk you through the actual self-assessment form so you can submit confidently.
5. Gap summary and next-step plan. A short, prioritized list of what to fix before Tier 02 Implementation or Tier 03 Managed Support.

Deliverables What You Walk Away With.

• FCI inventory document, current as of engagement close
• Baseline policies and procedures pack (Word + PDF)
• Practice-by-practice readiness scorecard against CMMC L1
• Self-assessment workbook with our notes
• 30-day, 60-day, 90-day prioritized next-step plan

Best for Who This Tier Fits.

Contractors who are new to DOW work, just won a contract with a CMMC L1 requirement, or have never formally documented their cybersecurity posture. If you don't know where you stand, this is where you start.

// Technical partner Where Stagg Comes In.

When the FCI walkthrough surfaces issues that aren't paperwork — cleared cloud infrastructure, AWS GovCloud rebuilds, air-gapped CI/CD pipelines, or STIG-hardened endpoints — that work hands off to our authorized partner.