Defense Cybersecurity Assurance Program (DCAP)

Helping keep the Department of Defense supply chain strong by supporting companies in cybersecurity resiliency


The Defense Cybersecurity Assurance Program (DCAP), primarily funded by the Department of Defense’s Office of Economic Adjustment, provides assistance to companies that have a strong need for support in achieving compliance with DFARS 252.204-7012. The University of Michigan, along with its partners, The Ohio State University and Purdue University, provide compliance assistance to companies across the states of Michigan, Ohio and Indiana through:

  • Offering expert cybersecurity consulting and funding to assist with DFARS 252.204-7012 compliance
  • Mapping resources and technologies capable of supplying critical cyber products and services
  • Hosting educational seminars about what cybersecurity compliance looks like today, changes coming, and what resources are available to SME’s to assist in the process


The new Cybersecurity Maturity Model Certification (CMMC) will require that 100% of all DoD contractors/suppliers achieve some level of 3rd party certification related to what is specified in their contracts.  Once the CMMC goes into effect, self-attestations will no longer be sufficient to bid on DoD contracts and it will affect all companies doing business in the defense supply chain regardless of the type of business.

Join us for a FREE seminar to learn what this means for your company, what resources are available to assist small to medium size companies in maintaining cybersecurity resiliency and hear industry experts talk on cybersecurity-related topics.

Who should attend?

  • Companies currently doing or looking to do business in the Department of Defense supply chain

  • Companies wanting to learn about the Cybersecurity Maturity Model Certification

Tabletop Registration

If you are a cybersecurity supplier or a company supporting the DoD supply chain for small to medium businesses please register for a free tabletop exhibit highlighting your services. For more information or to submit your request, please email Stephanie Ludwig at – Exhibit space is limited.


Seminar Flyer



Macomb Community College
Center Campus – UC1
44575 Garfield Rd
Clinton Twp, MI 48038


8:30 am – 3:00 pm


Networks Northwest Conference Center
1209 S. Garfield
Traverse City, MI 49686


8:30 am – 3:00 pm


Muskegon Innovation Hub at GVSU
200 Viridian Dr
Muskegon, MI 49440


8:30 am – 3:00 pm


Jackson Country Club
3135 Horton Road
Jackson, Michigan 49203


8:30 am – 3:00 pm


Frankenmuth Bavarian Inn Lodge
100 Covered Bridge Lane
Frankenmuth, MI 48734


8:30 am – 3:00 pm



Are you in the defense supply chain?

December 31, 2017, was the U.S. Department of Defense’s (DOD) deadline for ALL defense contractors, at any tier of the supply chain, with Defense Federal Acquisitions Referral Supplement 252.204-7012 and National Institute of Standards and Technology (NIST) Special Publication (SP) 800-171.

 What is DFARS 252.204-7012?

Defense Federal Acquisition Regulation Supplement (DFARS) 252.204-7012 requires that all DoD suppliers implement NIST SP 800-171 to address 14 security families.

What is NIST 800-171?

The National Institute of Standards and Technology’s (NIST) Special Publication (SP) 800-171 guidelines protect the defense supply chain in non-federal systems and organizations. 

What is Cybersecurity Maturity Model Certification (CMMC)?

The Cybersecurity Maturity Model Certification (CMMC) is a new cybersecurity certification currently being developed by the DoD for all defense suppliers to validate cybersecurity compliance.

What is the risk of not being compliant?

  • If you are a government contractor, failure to meet these requirements will result in the loss of existing and/or future contracts.
  • A breach of security in the defense supply chain is a potential risk to national security.

Initial Eligibility Criteria for Funding Assistance

1. The company has operations in Michigan, Ohio, or Indiana

2. At least 10% annually of business revenues are from DOD-derived contracts currently or within the past 5 years

a. Or demonstrates critical potential to address a particular need in the defense supply chain

3. Company has less than 500 employees

For more information or to apply for assistance, please contact Stephanie Ludwig at


The Defense Cybersecurity Assurance Program is working to map the resources available to SME’s to support cybersecurity compliance throughout the Michigan, Indiana, and Ohio regions. DCAP is developing a comprehensive list of cybersecurity service providers throughout the region that will supply critical cyber products and services to SMEs in order to assist them in compliance to DFARS 252.204-7012. In addition, DCAP is mapping new technologies and tools being developed within the universities throughout Michigan, Indiana and Ohio that will be able to be utilized by SME’s in the future to create a more cyber-secure supply chain. If you are interested in submitting your company or technology information please click the following links below.

Cybersecurity Resource Guide Application





DCAP Staff

Stephanie Ludwig Project Manager
Steven Wilson
Steven Wilson Senior Research Program Officer
Lauren de Vries
Lauren de Vries
Ankur Singh
Sarah Crane
Tracy Ross
Ashlee Breitner