CHICAGO, Aug. 25, 2025 /PRNewswire/ -- RSM US LLP ("RSM") – the leading provider of assurance, tax and consulting services for the middle market – has achieved Cybersecurity Maturity Model Certification (CMMC) Level 2 as an External Service Provider (ESP). This designation formally distinguishes RSM as both a Managed Services Provider (MSP) and a Managed Security Services Provider (MSSP) for government contractors handling critical national security information.

Earning this achievement marks a significant milestone in RSM's cybersecurity journey, underscoring the firm's unwavering commitment to helping clients meet the U.S. Department of Defense's (DoD) stringent cybersecurity requirements.

"As the largest Certified Third-Party Assessor Organization recognized by the Cybersecurity Maturity Model Certification Accreditation Body, earning our own Level 2 certification as an ESP reinforces that we hold ourselves to the same rigorous standards we help our clients achieve," said Damon Frank, principal and national government contractor managed services leader at RSM US LLP.

Empowering Government Contractors

For government contractors, CMMC compliance can be a significant operational hurdle. With limited resources and growing cybersecurity regulatory expectations, many are searching for trusted organizations who understand federal requirements and have proven their own ability to meet them.

RSM's certification as a CMMC Level 2 ESP is a direct response to this need. By delivering managed services from within its own environment, RSM offers government contractors a trusted partner who can provide outsourced services aligned to the DoD's cybersecurity requirements. 

"This milestone validates the depth of RSM's integrated CMMC cybersecurity and technology advisory services," said Charles Barley Jr, principal, government contracting cybersecurity and technology leader at RSM US LLP. "It positions us as a leader in this industry to support our clients' entire compliance journey."

Building on this foundation, RSM is focused on simplifying compliance and reducing operational complexity for its clients.

"This is about removing complexity for the government contractors," added Frank. "Our clients can now rely on a provider who has gone through the same process, met the same standard and is equipped to support them from strategy through execution."

With this certification, RSM can now deliver end-to-end managed IT and security services that help organizations protect sensitive data, maintain CMMC compliance and remain competitive for valuable government contracts. Organizations seeking to learn more about their CMMC compliance journey can explore RSM's full suite of services here.

About RSM US LLP

RSM empowers middle market companies worldwide to take charge of change. The clients we serve are the engine of global commerce and economic growth. Our unique middle market perspective makes RSM the natural choice for growth-oriented, internationally active organizations seeking relevant insights and tailored, innovative solutions for a complex and changing world. With a global reach spanning more than 120 countries, we instill confidence in a world of change by bringing the full power of RSM to make a lasting impact on our clients, colleagues and communities. For more information, visit rsmus.com, like us on Facebook, follow us on X and/or connect with us on LinkedIn.

View original content to download multimedia:https://www.prnewswire.com/news-releases/rsm-achieves-cmmc-level-2-certification-as-an-external-service-provider-for-government-contractors-302537636.html

SOURCE RSM US LLP