IT Compliance

Security Compliance


As a Managed IT Service Provider, WingSwept understands the growing cybersecurity threats and takes steps to protect our clients’ information. We have earned and maintain multiple security compliance certifications with the most stringent security standards. We continuously work to maintain these standards by regularly adhering to compliance policies and completing annual security audits.

FedRAMP® Authorization

WingSwept’s Case Management & Tracking System (CMTS) product is FedRAMP Authorized at the Moderate Impact Level. This provides agencies with a secure cloud hosted case management platform.

WingSwept is not a 3PAO and does not provide FedRAMP assessments.

SOC 2® Type 2 Evaluated

WingSwept has completed a SOC2 examination, and a report has been issued on the operating effectiveness of the company’s controls relevant to security.

NIST 800 – 171 Attestation

WingSwept maintains its Production Network in accordance with the security requirements specified in SP 800-171 Rev. 2.

The Department of Defense’s CMMC 2.0 Level 2 requirements match these requirements, and they are expected to take effect for Defense contractors in May 2023.

HIPAA Risk Assessment

WingSwept has completed an external assessment of the administrative, physical, and technical safeguards in place to ensure its compliance with the Federal HIPAA Security Rule. These safeguards the confidentiality, integrity, and security of electronic protected health information.


We are committed to providing our clients with the highest level of cybersecurity protection. We regularly review our security measures and make changes as needed to stay ahead of the latest threats.