We've always believed that the best way to protect the world's most sensitive data is to treat security as a culture, not a checkbox. That belief is now formally validated.
Glasswall has achieved Cybersecurity Maturity Model Certification (CMMC) Level 2 — awarded on 3 March 2026. It's a milestone that reflects something we've been committed to long before the certification existed: holding our own operations to exactly the same rigorous standards we help our customers meet.
CMMC 2.0 is the U.S. Department of Defense's framework for ensuring that every organization in the defense supply chain maintains the cybersecurity standards required to protect Controlled Unclassified Information (CUI). Level 2 maps directly to the 110 security practices outlined in NIST SP 800-171, and it's no longer optional — Phase 2 enforcement requires Level 2 certification for most DoD contracts involving CUI by November 2026.
For organizations working with or within the defense industrial base, the window to get ahead of this requirement is narrowing fast. Those who move early aren't just avoiding risk — they're actively strengthening their position for future contract eligibility as enforcement accelerates.
Glasswall's patented Content Disarm and Reconstruction (CDR) technology is already mandated for use as a file filter in Cross Domain Solutions by the NSA. Our Zero Trust file protection is trusted by U.S. defense and intelligence agencies every day. Achieving CMMC Level 2 certification reinforces what our customers already know — that Glasswall operates with the same uncompromising security posture we build into our products.
As Steve Roberts, CFO/COO of Glasswall, puts it:
"Protecting our customers' most sensitive data has always been at the core of what Glasswall does, and achieving CMMC Level 2 certification demonstrates that we hold our own operations to the same standard. As the Department of Defense expands CMMC requirements across its contracting base, this certification ensures Glasswall is well-positioned to continue supporting defense missions with confidence."
This isn't about meeting a minimum bar. It's about demonstrating — formally and verifiably — that our commitment to security runs through everything we do, not just the products we ship.
We worked closely with Security Ideals, a cybersecurity and AI governance firm, as our advisory and implementation partner throughout the CMMC readiness process. Their team led a comprehensive program covering gap assessment against NIST SP 800-171 requirements, enclave scoping, evidence organization and documentation, and full assessment preparation and support.
Nick Gibson, Founder & Principal of Security Ideals, reflected on the process:
"Glasswall is exactly the kind of organization that sets the bar for what CMMC readiness should look like. Their security culture is already embedded in how they operate, and formalizing that through Level 2 certification was a natural extension of their commitment to the defense industrial base."
The result of that partnership speaks for itself.
CMMC Level 2 certification is one part of a broader security assurance program at Glasswall — one that reflects our mission to deliver proactive, Zero Trust protection to government and commercial clients worldwide. As CMMC requirements continue to evolve and enforcement tightens, both Glasswall and Security Ideals remain committed to helping organizations across the defense supply chain stay ahead.
Your data will be compromised — the only real question is when, and whether you've done everything possible to prevent it. For Glasswall, the answer has always been yes.
Security Ideals is a cybersecurity and AI governance firm helping mid-market companies operationalize security and adopt AI responsibly. The firm delivers CMMC readiness and compliance programs, vCISO and security advisory services, and AI governance solutions built on ISO 42001, NIST AI RMF, and EU AI Act frameworks. Security Ideals operates on an AI-first model with 40+ integrated agent systems across its own operations, bringing practitioner-level expertise to clients navigating both cybersecurity compliance and the emerging landscape of AI risk. For more information, visit securityideals.com.
Glasswall is a cybersecurity company that protects government agencies and commercial organizations from malicious files with its Content Disarm and Reconstruction (CDR) technology. Unlike traditional detection-based methods, Glasswall employs a Zero Trust approach that removes malware's ability to exist in files altogether. Glasswall's CDR technology is mandated for use as a file filter in Cross Domain Solutions by the NSA and is trusted by defense and intelligence establishments worldwide.
Glasswall's Marketing Director, Jake, drives strategies that empower the company's sales teams. A highly creative and seasoned industry professional, his passion for branding and customer-focused messaging fuels growth across domestic and international markets.
Eliminate malware before it reaches your network and ensure your files are always safe and secure with Glasswall’s Zero Trust and intelligent file protection.
Fill out the form and we’ll be in touch shortly.
