CISO Global’s subsidiary, TalaTek, has earned Certified Third‑Party Assessment Organization (C3PAO) status, authorizing it to conduct Cybersecurity Maturity Model Certification (CMMC) assessments for defense contractors. The credential opens a new revenue stream in the defense cybersecurity market, a sector that is rapidly expanding as the U.S. modernizes its cyber defenses.
C3PAO status enables TalaTek to certify Level 2 contractors under the newly rolled‑out CMMC 2.0 program, whose phased implementation began on November 10 2025. By meeting the certification requirement, TalaTek can now serve the defense industrial base, aligning with CISO Global’s strategy to shift toward a software‑led, services‑backed model and to capture higher‑margin contracts in regulated sectors.
TalaTek’s foundation for this capability is its FedRAMP 3PAO status, held since 2014, which has given the company deep experience in federal security assessments. The new C3PAO credential builds on that expertise and positions the company to meet the growing demand for certified cybersecurity assessments in the defense supply chain, a market projected to reach tens of billions of dollars in the coming years.
In Q3 2025, CISO Global reported revenue of $6.46 million, down 14% from $7.51 million a year earlier, but net income rose to $2.53 million from a $3.68 million loss in Q3 2024. Basic earnings per share improved to $0.07 from a loss of $0.33. The turnaround reflects disciplined cost management and a shift toward higher‑margin services, including the new C3PAO offering, which is expected to generate additional revenue as demand for CMMC compliance grows.
CEO David Jemmett said the C3PAO achievement is a natural extension of the company’s mission to help organizations manage risk and maintain trust, and that the new capability will help defense contractors sustain compliance in an evolving threat landscape.
The credential positions CISO Global to win higher‑margin contracts in regulated sectors and accelerates its transition to a recurring‑revenue, software‑backed model. While the company has not yet projected specific revenue from C3PAO services, the defense cybersecurity market’s size and growth suggest significant upside for the new offering.
The C3PAO status marks a milestone in CISO Global’s strategic evolution and signals its readiness to serve the growing demand for certified cybersecurity assessments in the defense sector.
The content on BeyondSPX is for informational purposes only and should not be construed as financial or investment advice. We are not financial advisors. Consult with a qualified professional before making any investment decisions. Any actions you take based on information from this site are solely at your own risk.