Snapshot About Us

Cyber Risk Management | Cybersecurity is a Team Sport
Sera-Brynn is a veteran owned and operated, cybersecurity firm focused on audits and assessments, cyber risk management, and incident response. The headquarters are in Chesapeake, Virginia near the seven cities of Hampton Roads: Norfolk, Portsmouth, Hampton, Newport News, Suffolk, Chesapeake, and Virginia Beach. Our Compliance, Audit, Risk Control and Cyber Incident Response services have been trusted by organizations in every industry, of every size. ISO/IEC 17020:2012 and FedRAMP certified.

Working Hours

Monday - Friday 09:00AM-16:00PM
Saturday - Sunday CLOSED



CMMC & DFARS Assessments

Get ready or get audited. Ask us about these evolving standards.

Anyone can tell you about your problems. In fact, you probably already know where and what a lot of them are. Sera-Brynn is a Virginia-based cybersecurity firm with the Department of Defense (DoD) expertise to devise solutions that make sense for your business.

Our expertise in NIST, including SP 800-171 and SP 800-53, and the DFARS clause was gained from nearly 20 years of DoD experience, including creating and validating compliance packages, building cutting-edge architectures and shaping policy at all levels of government. Our in-house incident response and forensic capabilities means that when you work with us, you have access to the experts in protecting confidential information and detecting and responding to potential incidents.

Sera-Brynn analysts are seasoned. As an organization, we have assessed hundreds of organizations in the DIB.  We continually work with clients on interpreting and strategizing how DFARS and CMMC clauses are best implemented.

We have even summarized our findings from our years of performing DFARS assessments in two reports, which you can read here:

Reality Check 2020: Defense Industry’s Implementation of NIST SP 800-171

Reality Check 2019: Defense Industry’s Implementation of NIST SP 800-171

Most recently, we have begun offering a Centralized Log Management solution to solve one of the most challenging NIST security requirements – log management. Called CHECKLIGHT-CLM, the solution is an affordable solution for small and medium sized businesses in the DIB.

Through our partnerships with lawyers specializing in government contracts, and accountants specializing in government cost accounting, we offer an end-to-end solution of compliance specialization. The DoD acquisition requirements are about cybersecurity – and technology expertise is essential to becoming fully compliant with the documentation to prove it.

Image of a logo depicting Sera-Brynn as a CMMC -AB C3PAO Candidate

How do we perform assessments?

We provide expert-level auditors to help assess risk, develop documentation needed to show compliance, evaluate all applicable controls, and make specific and sensible recommendations to close gaps.

Methods we use:

Sera-Brynn’s expert cybersecurity compliance analysts can assess your information systems and cybersecurity program against the requirements specified in DFARS 252.204-7012, NIST SP 800-171, and the Cybersecurity Maturity Model Certification (CMMC). We know that each environment is unique and we have years of technical expertise to help you meet compliance.

It worth noting that cybersecurity compliance for the DIB can takes several months to achieve — so time is of the essence. We’re the experts. Contact us today to learn how we can assist you with your goals!

Sera-Brynn Spooky Logo