Kyle Cain

Cybersecurity | GRC Engineering

  • ACTIVE SECRET
Kyle Cain

Credentials

Credentials

Every badge links to its Credly verification page. Credly profile ↗

Built

CMMC Assessment Tool

Self-assessment, POA&M generation, and control mapping.

A CMMC Level 2 self-assessment that runs entirely in the browser. Nothing is uploaded.

It scores at the objective level across all 320 assessment objectives, tracks Level 1 and Level 2 separately, and computes a live SPRS score against the real methodology. Scoping, POA&M generation, and control mapping are built in.

  • 320 objectives
  • SPRS scoring
  • POA&M generation
  • Browser-local
  • cmmc-advisorContributor84 commits · 289 files

    A CMMC 2.0 advisor that runs as an agent skill. I extended it with the NIST 800-171A assessment-objective layer and the AO dataset, an AO-level SSP generator, Level 1 and Level 3 references, inherited-controls mapping from FedRAMP CRM/CIS Appendix J, and a reconciliation against the 32 CFR 170 final rule.

    Forked from LV-262/cmmc-advisor

    • Python
    • NIST 800-171A
    • 800-172
    • OSCAL
    • MIT

A decade across infrastructure, federal compliance, and advisory delivery.

  1. Jan 2026 — PresentRemote

    Workstreet

    Manager, GRC Engineering

    • CMMC L1/L2
    • FedRAMP 20x
    • NIST 800-53 Rev 5
    • KSI validation
    • DFARS 7012/7019/7020
    • ITAR/EAR
    • SOC 2 Type II
    • ISO 27001:2022
    • AWS GovCloud
    • Terraform
    • Python
    • Vanta
    • Drata
    • Secureframe
    • Paramify
    • IntelliGRC
    • Claude
    • Codex
    • Cursor
    • Agentic compliance pipelines
    • SSP authoring
    • C3PAO coordination
  2. May 2021 — Jan 2026Huntsville, AL

    COLSA Corporation

    Enterprise IT / Cyber Engineer

    • CMMC L2
    • CUI enclave design
    • DFARS 7012
    • ISO 27001:2022
    • SPRS
    • M365 GCC High
    • Entra ID
    • Intune
    • Defender
    • Sentinel
    • Palo Alto
    • Cisco/Meraki
    • VMware vSphere
    • Omnissa Horizon VDI
    • Nutanix
    • Tenable
    • SentinelOne
    • RSA
    • Splunk
  3. May 2017 — May 2021Huntsville, AL

    Astrion

    formerly QuantiTech

    IT Systems Administrator

    • NIST 800-171 Rev 2
    • DFARS 7012
    • Azure Government
    • M365 GCC High
    • SIEM
    • XDR
    • Windows 10 / WDS
    • BitLocker / GPO
    • PowerShell
    • Veeam