Granite(US:GVA) Businesswire·2025-12-08 13:30Core Insights - Granite has achieved Cybersecurity Maturity Model Certification (CMMC) Level 2, enhancing its capability to serve federal clients and protect sensitive government data [1][3] - The CMMC program is being rolled out in phases, with new federal contracts requiring certification starting November 10, 2025, and all Department of War contracts requiring it by October 31, 2026 [1] - Granite is among fewer than 500 firms out of an anticipated 80,000 federal contractors to have obtained CMMC Level 2 certification [1] Certification Details - The CMMC framework mandates government contractors to certify their cybersecurity practices, and Granite achieved a perfect score by passing all 110 security requirements and meeting 320 assessment objectives [2] - CMMC Level 2 is crucial for infrastructure contractors like Granite, as it is necessary for handling Controlled Unclassified Information on federal projects [3] Company Positioning - Achieving CMMC Level 2 is seen as a transformative milestone for Granite, positioning the company to pursue high-value federal contracts [4] - The company has demonstrated a commitment to aligning its infrastructure, policies, and training with the CMMC framework over the past two years [3]