2023 is shaping up to be a HUGE year for the CMMC program! DoD closed out 2023 by kicking off the “Joint Surveillance Program” (“JSP”) assessments of some DoD contractors, and many more are scheduled for 2023. If you aren’t familiar with the JSP assessments, they are voluntary assessments that are led by DoD’s DIBCAC (more…)
The United States Department of Defense (“DoD”) has begun its “Joint Surveillance Program” in conjunction with the CyberAB, the organization tasked with overseeing the CMMC ecosystem. Under the Joint Surveillance Program, members of DoD’s Defense Industrial Base Cybersecurity Assessment Center (“DIBCAC”) accompany and oversee representatives from CyberAB authorized Certified 3rd Party Assessment Organizations (“C3PAOs”) as (more…)
The CMMC Implementation Conference is being held January 18-20 at the beautiful University of San Diego. Chock full of valuable tips and tools for business owners, service providers, and those charged with implementing the CMMC requirements, CIC2023 is NOT your ordinary CMMC conference. Learn how to Stop Talking. Start Doing. You can even take CCP or (the first ever) CCA training classes before the conference and reinforce your learning at the conference! Register today at https://CIC2023.org
We are excited to announce the release of the new version of our CMMC 2.0/NIST SP 800-171 Self-Assessment Tool. This version includes automated FAR and Above and SPRS scoring and much more!
CMMC depends upon Authorized C3PAOs. DCMA’s DIBCAC team plays a crucial role in the C3PAO authorization process. However, the DIBCAC teams’ calendars were already full prior to CMMC. In this article, co-authored with Kyle Lai, Carter Schoenberg, Tony Buenger, and Derek White, we discuss whether the current system is likely to clear the CMMC C3PAO backlog in a timely manner and explore a few alternatives.
A second C3PAO has met the Authorization requirements set forth by DoD and the CMMC-AB. This is a significant step in building out the CMMC Ecosystem!
The CMMC-AB announced the authorization of the first C3PAO.
The CMMC-AB’s March Town Hall was held March 30, 2021. Much of the information was a review of previously-announced information, but there were a few points of note. We provide our summary, and a link to the video, in the attached article.
The Cybersecurity Maturity Model Certification Accreditation Body (“CMMC-AB”) announced today that Matthew Travis has accepted the role of CEO and will begin his tenure on April 1, 2021. Mr. Travis is the former Deputy Director of the US Cybersecurity and Infrastructure Security Agency (“CISA”). Mr. Travis brings significant experience in both government and private sector (more…)
The CMMC-AB has released the first of what is expected to be a series of “video podcasts” on CMMC. The 45+ minute program is packed with good information, and we give you our run-down of key insights and highlights.