The cybersecurity maturity model certification (CMMC) is a journey towards proactive security, whereby organizations ultimately shift their focus to preventing security events from occurring in the [...]
Prior to the Cybersecurity Maturity Model Certification, defense contractors were responsible for implementing, maintaining, and assessing their own cybersecurity practices in accordance with the [...]
The Cybersecurity Maturity Model Certification (CMMC) replaces the current DFARS 252.204-7012 clause that defense contractors currently have to when entering into a contract with the Department of [...]
Most organizations wanting to contract or subcontract with the Department of Defense should aim for CMMC level 3. This is the minimum required level for handling controlled unclassified information [...]
Level 5 is the highest of all the CMMC levels, and the most time-consuming and complicated to achieve. While this level only adds 15 new CMMC controls, they are far more complex and burdensome to [...]
While the controls introduced in CMMC levels 1 and 2 present the bare minimum of adequate security, the third level is where things culminate. This is also the level that most organizations should be [...]
With 72 controls spanning all but two of the 17 domains, CMMC level 2 presents a significant step up from the first level. However, it is also widely considered to be a transitional phase in [...]
Businesses embarking on their CMMC journey will most likely be aiming for CMMC level three, which is the requirement for handling controlled unclassified information (CUI). However, the demands of [...]
The first level of the CMMC framework is intended to serve as an introduction to further CMMC levels. While every organization will ultimately need to achieve a higher level to sign contracts with [...]
While CMMC levels one and two encompass the transitional work required to get your cyber hygiene up to scratch, the third level is the one that most organizations will be aiming for. This level is [...]