🎉 Exciting news! Coalition has acquired Wirespeed to accelerate cybersecurity for all.

Read more

CMMC Level 2 Support

Last Updated: February 2026

PDF Version available here

Subject: MDR Service Scope in Relation to CMMC Level 2

To Whom It May Concern,

Wirespeed provides Managed Detection and Response (MDR) services to U.S. defense industrial base (DIB) contractors. We understand the importance of cybersecurity maturity and compliance requirements under the Department of Defense Cybersecurity Maturity Model Certification (CMMC) program.

Based on the nature of our services and data flows, Wirespeed does not process, store, or transmit Controlled Unclassified Information (CUI). Our MDR services operate solely on security telemetry and metadata (e.g., usernames, hostnames, file/process names, alert data) provided by the customer. Wirespeed analysts do not have direct access to customer networks, systems, or CUI repositories.

Accordingly, Wirespeed’s systems and services are out of direct scope for CMMC Level 2 certification. However, we recognize our responsibility to safeguard all information we receive and to support our customers’ compliance efforts.

#Wirespeed Security Commitments

  • Data Handling: All customer telemetry is stored exclusively within data centers located in the United States.

  • Personnel: For DIB customers, all MDR operations are performed by U.S.-based employees; no offshore personnel or subcontractors are used.

  • Retention: Telemetry is retained for a minimum of 90 days and may be retained longer based on customer preference, including indefinite storage if requested.

  • Security Controls: Wirespeed has achieved SOC 2 Type I attestation, demonstrating our adherence to strong security, availability, and confidentiality controls.

  • Customer Support for CMMC: While Wirespeed does not process CUI directly, our MDR services help customers strengthen their compliance posture in Audit & Accountability (AU), Incident Response (IR), and System & Information Integrity (SI) as defined by NIST SP 800-171.

We are committed to transparency and partnership with our defense customers. Wirespeed will continue to maintain and improve our security program, and we will provide customers with documentation necessary to demonstrate supply chain assurance.

Please contact us if additional information is required.

— The Wirespeed Team