CMMC Ready — CMMC Level 2

85% NIST 800-171 coverage. 2 control gaps identified.

CMMC Status

CMMC Ready

Target Level

Level 2

NIST Coverage

85%

Cloud Storage

Box for Government

by Box

Overview

Box for Government by Box is a cloud storage solution with FedRAMP authorization targeting CMMC Level 2 compliance. It provides 85% coverage of NIST 800-171 controls for defense contractors handling CUI.

NIST 800-171 Coverage

85% of 110 controls covered2 gaps

Control Gaps

3.3.13.3.8

Strengths

✓Dedicated government data centers

✓Role-based access controls

✓Multi-factor authentication support

✓Encryption at rest and in transit

✓Audit logging and SIEM integration

CMMC-Ready Cloud Storage Alternatives

AWS GovCloud

Amazon Web Services — 95% coverage

Azure Government

Microsoft — 93% coverage

Google Cloud for Government

Google — 90% coverage

Oracle Cloud Infrastructure Government

Oracle — 88% coverage

Frequently Asked Questions

Is Box for Government CMMC compliant?

Box for Government meets CMMC Level 2 requirements with 85% NIST 800-171 control coverage.

What NIST 800-171 controls does Box for Government cover?

Box for Government covers 85% of the 110 NIST 800-171 controls, with 2 gaps primarily in 3.3.1 and 3.3.8 control families.

What are the CMMC compliance gaps for Box for Government?

The primary gaps are in controls 3.3.1, 3.3.8. These require supplementary tools or process controls to achieve full CMMC Level 2 compliance.

Check Your Full Tech Stack

See CMMC readiness scores for 80+ enterprise vendors.

Open CMMC Readiness Check

← All CMMC Readiness Checks