We know you are concerned about the CMMC and want to learn more. Our "CMMC Updates" hope to meet this need for your organization. You can read past editions in our archives.
You'll get regular updates on the progress of the CMMC, and useful tips on preparing for your own CMMC assessment.
The interim rule allowing the CMMC clause in contracts was published on September 29, so the time to prepare is now.
Coming up: October 28 work(fromhome)shop
7 Steps to Implementing the NIST Cyber Security Framework.
What is the Cybersecurity Maturity Model Certification (CMMC)?
For more than a year, the Department of Defense (DoD) has been developing a new program for third-party certification of the security of information systems in ALL DoD contractors and subcontractors. This new CMMC requirement will impact approximately 300,000 businesses in the US, many of whom are small contractors or subcontractors lacking even basic cyber hygiene. While it will take 5 years to fully roll out to the entire DoD supply chain, smart organizations are starting to prepare now. Contracts with the CMMC clause will only be awarded to organizations that already have their CMMC in place, and prime contractors are obligated to "flow down" the CMMC requirements to their subcontractors.
The CMMC Accreditation Body, a non-profit organization managing the ecosystem for training assessors and certifying contractors under the CMMC Model, recently began training the first level of CMMC consultants, the Registered Practitioner. We are pleased to say that our President, Glenda R. Snodgrass, is among the first to successfully complete the training, and hopes to be credentialed soon.
While the CMMC currently applies only to DoD contractors, the GSA has already included references to CMMC in a recent solicitation, and it is widely believed that the CMMC will be expanded to all federal government contractors in the near future. If you have any questions about the CMMC, please contact us! We are always happy to talk with organizations who have cyber security concerns.
If you haven't already signed up for CMMC Update, do that now!