We're CMMC Level 2 Certified. Here's What That Means for Your Program
We got the certification. But we've been operating to this standard for years.
Why CMMC Level 2 Exists
The Department of Defense created the Cybersecurity Maturity Model Certification to protect Controlled Unclassified Information (CUI) across the defense industrial base. Level 2 specifically addresses the NIST SP 800-171 requirements—110 security controls designed to prevent adversaries from accessing sensitive program data through supply chain vulnerabilities.
When you're managing a deep space mission or a tactical defense program, a breach at the supplier level isn't just a data problem. It's a mission compromise. CMMC Level 2 ensures your partners meet the same cybersecurity standards your program demands.
What Independent Verification Means
CMMC isn't self-certified. A third-party assessor audits every control, every process, every system. They verify that security isn't documented on paper—it's implemented in practice.
For our customers, that means faster contract execution, cleaner audits, and confidence that the controllers running your spacecraft or the power systems supporting downrange operations are built and managed inside a verified secure environment.
Forty Years, One Standard
When your cryocooler controller is managing thermal systems 300 million miles from Earth, or your tactical power unit is operating downrange, failure isn't an option. Neither is a data breach.
We've built security into our engineering process the same way we build redundancy into our hardware—because the mission requires it. CMMC Level 2 validates that approach with independent proof.
CMMC Level 2 is the standard. Meeting it isn't optional for the work we do.
Iris Technology has been designing and manufacturing mission-critical thermal management and power systems for aerospace and defense applications since 1986.