Achieving CMMC Level 2: Lessons from a Perfect Score

CMMC 2.0 is no longer a future requirement, it’s here. The 48 CFR Acquisition rule has cleared regulatory review and is moving to publication, meaning that every DoD contract, prime and sub, will soon require at least CMMC Level 2 certification to remain competitive. The countdown to compliance has officially begun.

In this session, two AIS experts will share front-line lessons from achieving a perfect 110/110 score in CMMC Level 2. Instead of theory, you’ll gain practical guidance on building audit-ready compliance programs that are sustainable, scalable, and aligned with assessor expectations. Learn how to:

• Leverage automation and smart workflows in Azure Government and GCC High to streamline evidence and documentation.
• Avoid common pitfalls that derail even well-prepared teams.
• Shift compliance from a one-time project to a repeatable, continuous practice that reduces risk and accelerates readiness.

With CMMC enforcement imminent, this is your chance to hear from practitioners who have already faced these challenges and walk away with actionable strategies to prepare your organization, protect future revenue, and stay ahead of the curve in the Defense Industrial Base.

This session is part of the Compliance Basics series — practical conversations on frameworks like CMMC, NIST, and FedRAMP from teams who’ve done the work.

Speakers

Bryan McGill – Solution Architect, Security and Compliance, AIS
Bryan McGill is a Cloud Cybersecurity and Compliance Architect with over a decade of experience supporting secure modernization for federal agencies. At AIS, he leads compliance and security initiatives across unclassified and classified DoD environments, using Azure and Data Mesh to deliver enterprise-compliant landing zones and accelerate ATOs. Within AIS’s Office of the CTO, he develops Zero Trust frameworks and delivery playbooks, and has a proven track record guiding organizations through CMMC and ATO success.

Meredith Dost – Vice President, Infrastructure and Security Solutions, AIS
Meredith Dost leads AIS’s infrastructure and security strategy across federal and commercial sectors, with deep expertise in Microsoft Purview, Sentinel, and Defender. She specializes in secure modernization, compliance automation, and mission continuity for regulated environments. Meredith has successfully guided multiple organizations through CMMC readiness and audit, aligning implementation with assessor expectations to drive scalable, sustainable results.

About AIS

Applied Information Sciences (AIS) is a trusted Microsoft partner with 40+ years of experience helping federal agencies and defense contractors meet complex compliance and security requirements. AIS was among the first 100 DoD contractors to achieve CMMC Level 2 with a perfect score, demonstrating deep expertise in aligning programs with NIST SP 800-171 and CMMC 2.0. From readiness assessments to continuous monitoring, AIS leverages automation and AI to simplify compliance and sustain long-term success.
www.ais.com