Dox Electronics says two manufacturers scored 91+ on DIBCAC audits

By AI, Created 6:21 PM UTC, May 28, 2026, /AGP/ – Dox Electronics says two manufacturing organizations earned SPRS scores of 91 or higher during recent DIBCAC High assessments after rapid remediation support. The results underscore how quickly DIB contractors may need to close cybersecurity gaps as CMMC Level 2 enforcement approaches.

Why it matters: - DIB contractors with weak cybersecurity scores face rising risk as the Defense Department moves toward CMMC Level 2 enforcement. - Dox Electronics says rapid validation work can help organizations avoid major score losses during DIBCAC High assessments. - A score above 90 signals audit-ready maturity by the standard described in the release.

What happened: - Dox Electronics said two manufacturing organizations achieved SPRS scores of 91 or higher in recent DIBCAC High assessments. - The clients had engaged Dox Electronics shortly before audit activity began. - The company said the results came after rapid remediation and readiness support.

The details: - Dox Electronics works with organizations in the Defense Industrial Base on cybersecurity, compliance and managed services. - The company described a validation-first approach tied to NIST SP 800-171 and DIBCAC assessment criteria. - The approach includes control-by-control validation, production environment hardening, audit artifact development, SSP alignment with operational practice and simulated DIBCAC assessments. - Dox Electronics said common gaps include incomplete multi-factor authentication enforcement, inconsistent vulnerability management, untested incident response procedures, logging and monitoring gaps, and weak audit evidence. - DIBCAC High assessments require objective evidence, technical validation and live demonstration of controls. - The company said these assessments can sharply reduce scores when gaps appear. - Dox Electronics said the two clients showed their environments confidently during live validation and had minimal findings and no systemic control failures. - Industry-aligned data cited in the release puts typical SPRS scores near -12. - The release said that average reflects widespread gaps in NIST SP 800-171 implementation.

Between the lines: - The results suggest some DIB organizations still confuse paper compliance with demonstrable control enforcement. - Dox Electronics is positioning validation at the point of assessment as the fastest path to improving audit outcomes. - The move from SPRS scoring to CMMC Level 2 pass/fail requirements raises the stakes for contractors with unresolved gaps.

What’s next: - Dox Electronics expects more organizations to seek rapid remediation when notified of DIBCAC assessments. - The company says organizations with low or negative SPRS scores should prioritize validation-focused fixes before they face contract risk. - Dox Electronics is directing organizations to learn more or contact the company for a readiness evaluation. - The company also maintains a LinkedIn page.