CMMC Maturity Process Assessment

Getting lost in the different requirements of the Cybersecurity Maturity Model Certification? Pull back the sheets and realize much of what we mean withe practices and processes revolve around doing business better. You do practices in cybersecurity. Verbs. Controls. Compliance. These practices require processes to stick. Your company needs solid policies, documentation, and plans to…

Is My IT Provider in scope for CMMC?

Let’s ask the Department of Defense “Q7: Our Company has outsourced its IT support and systems to a third-party contractor. Are we still responsible for complying with DFARS clause 252.204-7012 and implementing NIST SP 800-171?” A7: Outsourcing your IT to another company does not transfer your DFARS clause 252.204-7012 responsibilities or implementation of NIST SP…

https://www.youtube.com/watch?v=ohOa3CcMSEM

Join Dana as she interviews Ali Allage for some back of the naplin math on the time and treasure CMMC will take.    

https://www.youtube.com/watch?v=KR50PvQwIV0&t=2s

Another great video from Dana covering the decisions companies face with Cybersecurity Maturity Model Certification.

What is CMMC?

[caption id="attachment_400" align="aligncenter" width="1024"] “Hacking” by Worlds Direction https://flickr.com/photos/worldsdirection/33627388363 is licensed under CC CC0[/caption] In 2019 the Department of Defense announced the creation of the Cybersecurity Maturity Model Certification (CMMC) to replace the self reporting of cyber hygiene that used to govern the DIB. The CMMC puts an end to self-assessment and requires a third party assessor to…