Specifications include, but are not limited to: Helping define the scope of the CMMC Level 2 within the MARS building; Assessing current cybersecurity practices against CMMC Level 2 requirements within the defined scope; which includes an Initial cybersecurity assessment and gap analysis. Identifying Cloud Service Providers that address the functionality required within the MARS building that comply with CMMC Level 2 requirements; Developing a plan of action and milestones (POAM); Assisting with the implementation the POAM to ensure the adoption of the necessary security controls and practices which includes: technical support, training of relevant staff and documentation support including a revision of the systems security plan; Preparing for and facilitating the CMMC Level 2 assessment process through a pre-certification assessment; and Operationalizing CMMC Level 2 controls and compliance with related DFARS clauses such as the incident reporting mandates under DFARS 252.204-7012(c)-(g).