Stella Maris Governance LLC β Public Governance Templates
Sanitized Governance | Risk | Compliance Templates
Overview
This repository contains sanitized, illustrative governance templates developed by Stella Maris Governance LLC for use as public reference artifacts. Templates are structured for defense compliance environments aligned to NIST SP 800-171, CMMC Level 2, DFARS, and NIST SP 800-161.
Important: All materials in this repository are sanitized, illustrative, and non-client-specific. They are provided as public reference artifacts to demonstrate the firm's governance methodology and documentation standards. These templates do not represent completed client deliverables and should not be used as substitutes for professional compliance advisory services.
Template Library
| Template | Framework Alignment | Description |
|---|---|---|
| Policy Framework | NIST SP 800-171 / CMMC | Security policy structure and template set |
| Risk Register | NIST SP 800-171 RA domain | Risk identification, scoring, and tracking |
| Control Matrix | NIST SP 800-171 / CMMC L2 | 110-practice control implementation matrix |
| Vendor Risk Template | NIST SP 800-161 / C-SCRM | Supplier risk assessment and scoring template |
| Audit Readiness Checklist | CMMC Level 2 | Pre-assessment readiness verification checklist |
| CUI Scoping Guide | DFARS / DOD CUI Registry | CUI data flow mapping and boundary definition guide |
Repository Structure
/policy-framework β Security policy structure and templates
/risk-register-template β Risk register structure and scoring framework
/control-matrix-template β NIST SP 800-171 control implementation matrix
/vendor-risk-template β Supplier risk assessment template
/audit-readiness-checklist β Pre-assessment readiness verification
/cui-scoping-guide β CUI scoping methodology and boundary guide
Usage Guidance
These templates are provided for reference and educational purposes. Organizations preparing for CMMC assessment or DFARS compliance should engage qualified advisory services to adapt these frameworks to their specific environment, system boundary, and compliance obligations.
Stella Maris Governance provides structured readiness engagements that produce completed, client-specific versions of these artifacts as part of the firm's five-phase delivery methodology.
Scope
All materials are sanitized illustrative artifacts only.
Exclusions
Completed client deliverables, active engagement workpapers, client-specific control implementations, and proprietary internal templates are maintained in the firm's internal source control environment and are not published here.
Stella Maris Governance LLC β Governance, compliance, and operational discipline for high-trust defense environments.