Skip to content
The micro-business CMMC survival kit™.
HRDN-IT™ is the simple and affordable on-premise CUI enclave solution for small- and micro-businesses pursuing NIST 800-171 and CMMC Level 2 compliance.
Manage HRDN-IT™ yourself, or let us handle it for you!
Accelerate your CMMC compliance with HRDN-IT™
More affordable
HRDN-IT™ keeps your CMMC Level 2 scope small, making it an affordable alternative to traditional enclaves for small businesses.
Different management options
HRDN-IT™ can either be managed by you or by us, providing flexibility to small businesses that want to handle CUI.
Highly customizable
With HRDN-IT™, we can customize your build to include the software and tools you need to perform your contract.
How it works:
Totem Technologies takes a laptop running Windows 11 and “hardens” it to help meet most technical requirements in NIST 800-171, including:
- Installing separate admin- and non-administrator accounts
- Removing all unnecessary software and applications
- Configuring the PC for encrypting CUI at rest
- Applying security baselines and configuring password and account lockout policies
- Installing and configuring an event log analysis tool with alerting capability
This hardened PC is then combined with a hardened router and a FIPS 140-2-validated USB drive and shipped to you. The result is a minimal “on-prem” CUI enclave:
Finally, we include our Totem™ CMMC Planning tool, which houses your System Security Plan (SSP) and Plan of Action & Milestones (POA&M), among other important CMMC artifacts. We’ll provide a customized SSP and POA&M within Totem, clearly outlining system configurations and evidence commensurate with NIST SP 800-171A, remaining compliance gaps, and a roadmap towards CMMC Level 2 readiness.
If you choose to purchase the Managed tier of HRDN-IT™, we’ll perform the ongoing IT and security monitoring functions of the enclave. We’ll walk alongside you and help you address the remaining gaps as you prepare for your CMMC Level 2 Self- or C3PAO assessment.
Built for small federal contractors, including:
SBIR/STTR awardees
Those awarded federal contracts via the SBIR/STTR programs.
Home office workers
Those that need to handle CUI while working from home.
"Mom and pop" machine shops
Small manufacturers that need to handle CUI on-prem.
Construction subcontractors
Small construction companies that need to handle CUI.
Minimal CUI-handling needs
Those uncertain if they are handling CUI yet still must comply.
Specific CUI-handling needs
Those that require specific software or tools to handle CUI.
Single-person contractors
Solo contractors or those with only one person handling CUI.
Micro-business contractors
Those with only a few people needing to handle CUI.
Fully transparent pricing for different management options.
Choose the level of management and support that best suits your needs.
HRDN-IT
Roll Your Own
You build it. You manage it.
$6,495
Per year*
- Single PC Enclave CMMC Level 2 Step-by-Step Hardening Guide
- Single PC Enclave SSP and POA&M Templates
- Annual Subscription to Totem™ at Engaged tier for Unlimited Users
- Access to CMMC Training Portal
- Access to Consultations As-Needed
*No security deposit required.
HRDN-IT
Self-Managed
We build it. You manage it.
$9,995
Per year*
- One (1) Hardened PC
- One (1) Hardened Router
- One (1) FIPS 140-2-Validated Backup Drive
- Annual Subscription to Totem™ at Enhanced tier for Unlimited Users
- Customized SSP, POA&M, and CMMC Compliance Artifacts
- Detailed Administration Guide
- Initial Setup Support
*For one PC, one Router, and one Backup Drive only. Requires one-time $1,000 refundable security deposit.
HRDN-IT
Managed
We build it. We manage it.
$19,995
Per year*
- Everything in HRDN-IT™ Self-Managed
- Day-to-Day IT Support and Administration*
- Cybersecurity Monitoring*
- Incident Response Assistance
- CMMC Level 2 Assessment Preparation Support
- C3PAO Certification Assessment Support
- Ongoing Continuous Monitoring Support
*For one PC, one Router, and one Backup Drive only. Requires one-time $1,000 refundable security deposit. IT support and security monitoring only applies to the HRDN-IT enclave and does not include physical security monitoring.
Need a custom build?
What's the difference?
Managed
For those that would rather we handle both the build and the ongoing management. We'll do everything we do in Self-Managed, but we will also help with the day-to-day IT and security monitoring. We'll also help you prepare for your CMMC Level 2 assessment, including helping generate evidence.
Roll Your Own
For those that don't mind rolling up their sleeves and doing the hardening and management themselves. You bring your own equipment (PC, router, backup drive), and we'll give you step-by-step hardening instructions and be available to provide consultation support if you need it.
Self-Managed
For those that are comfortable managing the enclave themselves, but would rather we do the build. We'll procure the equipment, perform the hardening, ship you the system, help you set it up, then review the POA&M with you. We'll help address any compliance questions as you work through the POA&M.
Is HRDN-IT™ right for me?
Answer a few quick questions to see if our CUI enclave solution is a good match.
HRDN-IT™ Frequently Asked Questions
Because contractors are required to implement NIST SP 800-171 to protect CUI, anywhere that CUI flows, the requirements follow. Therefore, you can expect the following to contribute to your HRDN-IT™ quote increasing:
- Wanting multiple work sites where CUI is handled
- Wanting multiple devices handling CUI at the same work site
- Wanting more cloud services to handle CUI
Yes it has. Contact us and we’d be glad to share more.
There is no external solution that can make anyone fully CMMC compliant. Purchasing HRDN-IT™ allows you to inherit most technical requirements in NIST 800-171, but it will still require you to finalize and adopt various policies and procedures and undergo a C3PAO certification assessment (if contractually required).
HRDN-IT™ comes with a detailed Plan of Action & Milestones (POA&M) outlining remaining CMMC Level 2 readiness gaps. We’ll go through the POA&M with you as part of onboarding.
The Department of Defense has established, in DFARS clause 252.204-7012, that any external cloud service provider (CSP) that stores, processes, or transmits any covered defense information (essentially DoD CUI) must meet the security requirements “equivalent” to the FedRAMP Moderate baseline. This is a significant undertaking for any CSP, and a very costly one, with hundreds of security controls and thousands of assessment objectives to implement and address.
These costs ultimately transfer to consumers. HRDN-IT™ is intentionally designed to avoid these steep and continually increasing costs by establishing a local, physical CUI enclave with a very minimal CUI scope.
Not unless you want to use Microsoft 365 to handle CUI, which is not required for use of HRDN-IT (or to pass a CMMC assessment). We intentionally uninstall all local Microsoft apps and replace them with a local alternative.
Totem Technologies does not resell or configure GCC or GCC High.
Yes, and we’ll ask about which cloud services you intend to use during onboarding. Depending on the cloud service and whether it will be used to process, store, or transmit CUI or Security Protection Data (SPD), we’ll discuss the implications.
This depends on which HRDN-IT™ offering you purchase. Please refer to our pricing table. Only the Managed tier includes managed services.
If you’d like HRDN-IT to be customized beyond what is listed here, let us know!
HRDN-IT components will have the following specs, unless otherwise stated:
- Hardened PC: Windows 11 Pro, 15.6″ display, 512 GB SSD, 16 GB RAM, i7 processor or newer, USB-A, USB-C, HDMI, Ethernet
- Hardened Router: Supports 5GHz and 2.4GHz, 802.11ax, multiple LAN/WAN ports
- Backup Drive: 2TB, FIPS 140-2-validated, PIN authentication
We’ll replace any equipment that fails or is rendered unusable due to a vendor defect or vendor misconfiguration.
If you are interested in a Linux variation of HRDN-IT, please contact us for more information.
HRDN-IT allows for custom software installation, and this is one of its key benefits over purely cloud enclave alternatives. Let us know in the Intake Form which software/applications you need. Depending on the software/application, we may be able to install it for you, unless it requires a paid license. Alternatively, you can install it once you receive your enclave.
If the software requires significant processing power to function, we may recommend upgrading beyond the default HRDN-IT specs.
Yes, but we do not provide a hardened printer by default with HRDN-IT. Request a Custom Build if you would like a hardened printer. If you choose to get your own printer later, it will be the organization’s responsibility to harden the printer, to include it in all covered system descriptions and diagrams, and to ensure processes/procedures are in place to control CUI flow through the printer.
Yes. Contact us to request this.