FutureFeed, a leading compliance platform for NIST SP 800-171 and CMMC, has announced a partnership with Teramis to integrate fully automated Controlled Unclassified Information (CUI) discovery and continuous monitoring into its Cyber-GRC platform. The collaboration aims to address a fundamental challenge in CMMC assessments: identifying where CUI resides within an organization's systems.
Under the agreement, Teramis' CUI discovery tool is embedded directly into the FutureFeed platform, enabling partners to offer new service offerings and providing contractors with a continuously monitored, evidence-based CUI boundary that assessors can review. According to the announcement, Teramis replaces interviews and assumptions with data, automatically identifying CUI in file types that other solutions often miss—including AutoCAD drawings, PDFs, images, and scanned documents—and surfacing spillage outside the boundary before it becomes a reportable incident, with up to 99.99% accuracy. The tool is already trusted by defense contractors supporting more than $10 billion in defense programs.
“Every CMMC engagement begins with the same question - where is the CUI? For too long the answer has come from interviews, assumptions, and hope, which is not a foundation anyone can defend in an assessment,” said Mark Berman, CEO of FutureFeed. “Teramis replaces guesswork with evidence, automatically. That's the certainty our partners and the contractors they serve deserve.”
Brandon Sessions, President of Teramis, emphasized the importance of automated discovery. “The hardest part of protecting CUI is knowing where it lives. Manual scoping doesn't scale, and it doesn't hold up. Our tool finds CUI automatically, across the file types everyone else misses, and shows contractors exactly where their data is. Partnering with FutureFeed embeds CUI discovery directly into the Cyber-GRC platform - where it's reviewed by assessors and used by IT teams to continuously monitor for spillage.”
This partnership is significant because it addresses a critical pain point for defense contractors seeking CMMC certification. Previously, identifying CUI boundaries relied heavily on manual processes, interviews, and assumptions, which could lead to incomplete or inaccurate scoping. By automating CUI discovery, the integrated solution provides a defensible, evidence-based approach that assessors can trust. For contractors, this means reduced risk of non-compliance, fewer reportable incidents, and a clearer path to certification.
The implications extend beyond individual contractors. With more than 1,400 clients and 350+ partners across the Defense Industrial Base (DIB), FutureFeed's platform serves a wide swath of the defense supply chain. Automating CUI discovery could streamline compliance for many organizations, potentially accelerating the overall adoption of CMMC standards. For the industry, this partnership signals a shift toward more rigorous, data-driven compliance practices that rely on continuous monitoring rather than periodic manual checks.
FutureFeed and Teramis are both established players in the defense compliance space. FutureFeed leads the DIB in achieving, maintaining, and proving scalable CMMC compliance, while Teramis provides fully automated CUI discovery and continuous monitoring trusted by organizations supporting major defense programs. More information about FutureFeed can be found at https://www.futurefeed.co, and about Teramis at https://www.teramis.us.
