Intelligent Waves wins CMMC Level 2 certification

By AI, Created 5:03 PM UTC, May 18, 2026, /AGP/ – Intelligent Waves said May 12 that it has achieved Cybersecurity Maturity Model Certification Level 2, clearing a key hurdle for future Department of War work and signaling stronger protection for controlled unclassified information. The certification could help the Reston, Virginia-based defense contractor compete as CMMC requirements spread across the Defense Industrial Base.

Why it matters: - CMMC Level 2 helps validate an organization’s ability to protect Controlled Unclassified Information, which is central to many Department of War programs. - The certification can become a competitive gatekeeper as roughly 80,000 Defense Industrial Base companies are expected to need Level 2 to stay eligible for DoW contracts. - Intelligent Waves now has a credential that can support growth in defense work and strengthen buyer trust around cybersecurity maturity.

What happened: - Intelligent Waves said May 12 that it achieved Cybersecurity Maturity Model Certification Level 2. - The company is based in Reston, Virginia. - The certification places Intelligent Waves among a smaller group of organizations authorized to support critical DoW programs.

The details: - CMMC Level 2 is an independently assessed standard tied to 110 security practices aligned with NIST SP 800-171. - The certification process typically requires investment in cybersecurity architecture, policy development, continuous monitoring and workforce training. - The process can take months to years to fully operationalize. - Chief Information Officer James Howell said the certification is a strategic inflection point and a business enabler. - Howell said the certification validates operational maturity, strengthens trust with partners and demonstrates a commitment to protecting sensitive national security information. - Intelligent Waves said a key part of its cybersecurity strategy is using Hypori to support secure Bring Your Own Device access. - The Hypori model is designed so no CUI is stored, processed or transmitted on the physical device. - Sensitive data remains in a secure, controlled environment. - Users can securely access corporate resources from personal devices. - The approach is intended to align with CMMC Level 2 boundary protections, access controls and data protection requirements while improving workforce mobility and user experience. - The company did not provide a timeline for additional certifications or contract wins.

Between the lines: - The certification matters beyond compliance because CMMC is becoming a market access requirement, not just a security badge. - Intelligent Waves is signaling that cybersecurity capability is part of its growth strategy, not only a defensive cost. - The Hypori deployment suggests the company is trying to balance security controls with flexible employee access, a common challenge in defense contracting.

What’s next: - Intelligent Waves said the certification positions the company to scale operations and pursue new defense opportunities. - As the Department of War expands CMMC requirements through its supply chain, certified firms are likely to have an advantage in bid eligibility and customer confidence. - Intelligent Waves said it will keep investing in advanced cybersecurity capabilities. - More information - Company Instagram - Company Facebook