Cherry Bekaert

Cherry Bekaert is a Cyber AB Marketplace-listed C3PAO based in Atlanta, GA.

Headquarters

Atlanta, GA

Region

Atlanta, GA

Founded

2022

Last verified

May 14, 2026

Sources

3 cited

Listing position

Editorial · unranked

Vendor website

Visit ↗

Plain-English description

What this provider does

Cherry Bekaert is a Cyber AB Marketplace-listed C3PAO based in Atlanta, GA, listed on the marketplace as operating since 2022. The Cyber AB listing names assessment services, audit services, cybersecurity consulting, governance, risk & compliance, penetration testing & phishing, security awareness and education, security program development, third-party risk management, training, and virtual ciso among the services they offer. We have not independently verified the vendor's own website; the Cyber AB Marketplace listing is the basis of every claim on this page.

Registered as / claimed status

Stated affiliations and certifications

What the vendor (or a third party) states about their formal status. Each line is anchored to its source.

Listed on the Cyber AB Marketplace as a C3PAO[01]

Why buyers hire them

What this provider is commonly used for

Formal CMMC Level 2 certification assessments (provider's own scope and authorization should be verified on their own site).
[01]
Formal CMMC Level 2 certification assessments under their C3PAO authorization.
[02]
Cybersecurity consulting engagements, separate from any certification assessment work.
[02]
Independent cybersecurity audits beyond CMMC scope.
[02]
Workforce security awareness and training programs.
[02]

Stated services

Services the vendor claims

CMMC Level 2 third-party assessments[01]
Assessment Services[02]
Audit Services[02]
Cybersecurity Consulting[02]
Governance, Risk & Compliance[02]
Penetration Testing & Phishing[02]
Security Awareness and Education[02]
Security Program Development[02]
Third-Party Risk Management[02]
Training[02]
Virtual CISO[02]
CMMC compliance gap and readiness assessments[03]
CMMC environment scoping and scope reduction recommendations[03]
CMMC gap remediation project management[03]
CMMC Level 2 certification assessments (as C3PAO)[03]
CMMC pre-assessment and POA&M close-out assessments[03]
CMMC eMASS submission[03]
NIST 800-171 attestation engagements (including SOC 2 + NIST 800-171 combined)[03]
Continuous monitoring and periodic risk assessments aligned with NIST frameworks[03]

What we don't know

Gaps in this record

Facts that could not be confirmed against a public source on the retrieval date. If you can point to an authoritative source for any of these, we'll update the record.

·This record is derived from the Cyber AB Marketplace listing. We have not independently verified the vendor's own CMMC page, pricing, or current engagement capacity.
·Vendor self-description and detailed service mix are not captured here — see the linked Cyber AB profile for the vendor's own narrative.
·We have not independently verified the vendor's own website. Cyber AB Marketplace listing is the basis of every claim on this page.
·Vendor pricing, current capacity, and engagement model are not captured here.

Sources

[01]Cyber AB · Cyber AB Marketplace listing — C3PAO
“Cherry Bekaert appears on the Cyber AB Marketplace with the address Atlanta, GA. Role(s): C3PAO.”
Retrieved May 14, 2026 · high confidence
[02]The Cyber AB · Cherry Bekaert | Cyber AB Marketplace
“Cherry Bekaert has been focused on serving the Government Contracting Industry for decades. Since established in 1947, Cherry Bekaert has experienced uninterrupted growth and now ranks as one of the Top 25 CPA and Consulting firms in the nation. Today, the Firm comprises a broad network of over 1,300 professionals offering a wide range of quality services to thousands of clients. Cherry Bekaert's Risk & Accounting Advisory Services practice consists of knowledgeable professionals with expertise in cybersecurity and information assurance. The team comprises information security professionals with sound information and cybersecurity governance experience coupled with deep technical knowledge necessitated to properly identify, mitigate and respond to cyber threats and risks. The team has over 20 years of information security experience ranging from security governance and risk management to technical security assessments including vulnerability management and ethical hacking.”
Retrieved May 14, 2026 · high confidence
[03]Cherry Bekaert · CMMC Compliance Consulting | Certification & Assessments | Cherry Bekaert
“CMMC Consulting. Cherry Bekaert can assist with CMMC compliance gap assessments, provide oversight and management of remediation and reporting efforts, or certification as an authorized CMMC Third-Party Assessment Organization (C3PAO). CMMC Compliance Consulting for DoD Contractors. Cherry Bekaert, an authorized CMMC Third-Party Assessment Organization (C3PAO) and designated Registered Practitioner Organization (RPO) by The Cyber AB, provides comprehensive CMMC services. CMMC Compliance GAP and Readiness Assessment Process. CMMC Environment Scoping. CMMC Gap Assessment with workshops. CMMC Gap Remediation. CMMC Certifications and Attestations: Phase 1 Pre-Assessment; Phase 2 Conducting the Assessment (examine evidence, conduct interviews, assess ESPs and CSPs, score, QA review); Phase 3 Complete and Report (upload to CMMC eMASS); Phase 4 Issue Certificate and POA&M close out. Comprehensive CMMC Attestation Services in conjunction with SOC 2 audits (e.g., SOC 2+ NIST 800-171). Aligned with NIST & DFARS (800-53, 800-171, 800-37, CSF, DFARS 52.204-7012/NIST 800-171). Active Role in CMMC Working Groups — Cherry Bekaert participated in the CAP Working Group that helped develop the CAP Guidebook.”
Retrieved May 14, 2026 · high confidence

Sources are the basis of every factual claim on this page. If the vendor has updated their site, the “last verified” date will lag. Re-check the vendor URL before relying on it.