(Not GRM-Related and far Off Topic)
My company is looking to finish our DD2345, an approval process used for Department of Defense contracts involving access to export-controlled technical data and materials, and, in our case, conference and meeting attendance that discusses or shares DoD/DND export-controlled material and data.
We make exotic metals for welding things like rocket engine nozzles, nothing classified. I've been asked to work on this and can't make heads or tails of it, mostly since this type of DOD bureaucratic framework is totally new to me.
Wondering if anyone might know anything about this? Ideally, we're looking for a good consultant who can help us through this process since we need it pretty quickly for some events. Please DM me, and thanks.
Hopefully, you'll get exactly what you need from someone here. If not, here's two cents: Given that your firm likely has to deal with IT-related CUI data storage/transmission compliance, and it sounds like maybe ITAR, too, my guess is, whoever oversees that would likely know whom to tap for DD2345 assistance. I don't know anything about DD2345, but the IT compliance is all DoD driven, per DFARS clauses. To the extent that DD2345 is similarly stipulated by DFARS (I don't know that it is), your compliance folks ought to be able to point you in the right direction. Also, assuming your firm is pursuing CMMC cybersecurity certification, find the person in charge of that and ask them.
Thank you! I knew GRM would be a great resource!
To the extent I understand what you're saying, I completely agree.
Unfortunately, we're currently an eight -person startup, so don't yet have this expertise.
It might be worth our company's time to bring in a consultant to help you make sure everything is set up correctly.
Getting debarred would not be a good thing.
Totally agree, miatafan. I'm looking to find a consultant...
