The RUSH Family of Companies, including RUSH Construction, Marine, and Facilities, knew early that cybersecurity wasn’t optional. With growing concerns about ransomware and the risk of DFARS-based contract protests, they saw CMMC as a smart investment and a clear differentiator.
When Bob Dillow, President at RUSH Facilities, was tapped to lead the charge for CMMC due to his background as a Navy veteran and previous compliance experience, he found a trusted partner in Alluvionic. Starting with a basic cybersecurity check in 2020, Alluvionic helped guide RUSH through a full remediation plan in 2021. Over 16 months, RUSH worked to meet the standards of CMMC 1.0 and later the revised requirements of CMMC 2.0.
In addition to helping RUSH achieve compliance, Alluvionic also helped onboard their Managed Service Provider (MSP) TeamLogic IT. This decision proved critical when shortly after joining, TeamLogic IT helped stop a possible cyberattack. RUSH felt a wave of relief avoiding the potential breech and a great sense of pride as they received praise from government partners for their cybersecurity maturity. Even before certification, RUSH saw real benefits: reduced cybersecurity threats, lower insurance premiums, and new business opportunities.
Before the final assessment, Alluvionic helped RUSH prepare by doing a practice run, providing training, and testing the team’s readiness. During the real assessment, Alluvionic helped with planning, supported the team during interviews, and even fixed a few issues on the spot. The result? RUSH earned their CMMC level 2 certification with zero POA&Ms.
Bob recounted his experience, saying, “For many companies, CMMC is a six-figure investment, so choosing the right partner is critical. From long before the framework was finalized to the moment we earned our certification, Alluvionic was with us every step of the way. With them as a partner, there was no way we could fail.”
With their Level 2 certification behind them, RUSH continues to treat cybersecurity as a strategic priority. They understand that CMMC isn’t a one-time checkbox. The name itself—Cybersecurity Maturity Model—means they need to keep improving. That’s why having a partner like Alluvionic is essential. From preparation to certification and beyond, the right support turns a complex challenge into a clear path forward. For companies like RUSH, that partnership not only led to compliance, but also helped them reach a milestone only a few early adopters have achieved, setting them apart as leaders in their industry.
Prepare with Confidence
Preparing for a CMMC assessment? Alluvionic has supported over 130 organizations on their path to compliance. As a woman-owned small business, we understand the unique challenges SMBs face. Download our free CMMC Readiness Toolkit for expert-built checklists, guides, and tools to help you get started with confidence.
