As a Managed IT Service Provider, WingSwept understands the growing cybersecurity threats faced by all companies. WingSwept has earned and maintained multiple security and compliance certifications with the most stringent security standards to ensure clients’ information is properly stored and managed. We continuously work to maintain these standards by regularly adhering to compliance policies and completing annual security audits.


FedRAMP® Authorization

WingSwept’s Case Management & Tracking System (CMTS) product is FedRAMP Authorized at the Moderate Impact Level, providing agencies with a secure cloud hosted case management platform.

WingSwept is not a 3PAO and does not provide FedRAMP assessments.

SOC 2® Type 2 Evaluated

WingSwept has completed a SOC2 examination, and a report has been issued on the operating effectiveness of the company’s controls relevant to security.

NIST 800 – 171 Attestation

WingSwept maintains its Production Network in accordance with the security requirements specified in SP 800-171 Rev. 2.

These requirements are identical with the Department of Defense’s CMMC 2.0 Level 2 requirements, which are expected to come into effect for Defense contractors in May of 2023.

HIPAA Risk Assessment

WingSwept has completed an external assessment of the administrative, physical, and technical safeguards in place to ensure its compliance with the Federal HIPAA Security Rule. These safeguards the confidentiality, integrity, and security of electronic protected health information.