San Francisco Circuits has officially achieved Cybersecurity Maturity Model Certification (CMMC) Level 2 status following a successful independent assessment by an accredited Certified Third-Party Assessment Organization (C3PAO).
This milestone confirms that the Printed Circuit Board (PCB) fabrication and assembly supplier’s enterprise information systems meet the cybersecurity requirements outlined in NIST SP 800-171 Revision 2, as codified in 32 CFR Part 170. These standards are designed to protect Controlled Unclassified Information (CUI) within the Defense Industrial Base (DIB). Serving both commercial and defense markets, the company has updated its status within the Supplier Performance Risk System (SPRS), providing visibility for Department of Defense (DoD) prime contractors and procurement officers.
The CMMC Level 2 framework requires organizations to implement and maintain 110 security controls across systems handling sensitive government information. Unlike self-attestation options, Level 2 certification requires independent third-party validation by a Cyber-AB accredited assessor.
Alex Danovich, President and CEO of San Francisco Circuits, commented, “This certification reflects the significant investments we’ve made to ensure our systems, processes, and internal controls meet the stringent cybersecurity expectations of today’s defense supply chain. As cybersecurity requirements continue to expand across government and aerospace programs, our customers can confidently partner with a manufacturer that has demonstrated verified compliance — not simply claimed it.”
Achieving CMMC Level 2 strengthens the company’s position as a manufacturing partner for defense contractors, aerospace companies, and government suppliers operating in highly regulated and security-sensitive environments. The company remains committed to maintaining and continuously enhancing its cybersecurity posture as compliance standards and customer requirements evolve.
