Announcing the 2022 CMMC Community Contributor Awardees! These individuals made exceptional contributions to the efforts to protect the US government’s supply chain, and the broader cybersecurity community. We appreciate their efforts and are pleased to recognize the positive contributions they have made!
We are excited to announce the release of the new version of our CMMC 2.0/NIST SP 800-171 Self-Assessment Tool. This version includes automated FAR and Above and SPRS scoring and much more!
The FAR and Above Program provides a risk-based, phased approach to achieving the requirements in NIST SP 800-171.
Government representatives have stated that complying with CMMC 2.0 Level 2 shouldn’t cost contractors or the government anything, because contractors have been attesting to the government that they are doing these things for years. This article explores why this is correct only for a small minority (17 out of 110) of the controls in CMMC 2.0 Level 2.
Documentation templates which can help create a robust cybersecurity strategy. Useful for CMMC, NIST SP 800-171, and more.
Imagine the following scenario: As part of Project Road Runner, a new initiative, the United States Army, a portion of (more…)
The DoD CIO’s office held a town hall on 2022-FEB-10. They discussed a variety of topics including CMMC 2.0. Several take-aways came out of the session that are critical for DoD contractors, especially those handling CUI.
NIST SP 800-171 can be overwhelming for contractors. In this article, we present a prioritized approach to implementing the 110 controls of 800-171.
The US Department of Defense published the Level 1 Self-Assessment Guide for CMMC 2.0 on 13-DEC-2021.
The US Department of Defense updated their main website (OUSD A&S – Cybersecurity Maturity Model Certification (CMMC) (osd.mil)) to include (more…)