DoD CMMC FAQs: Questions Answered

DoD CMMC FAQs: Questions Answered

To protect controlled unclassified information (CUI) that the US Department of Defense (DoD) handles, the department initially required its contractors to comply with the cybersecurity requirements of Defense Federal Acquisition Regulation Supplement (DFARS). However, starting this year, the DoD is shifting to the new Cybersecurity Maturity Model Certification (CMMC) framework.   To help you and ...

Why Managed Detection and Response is Important for CMMC Version 1.0

Why Managed Detection and Response is Important for CMMC Version 1.0

  Change is the only constant in the world of cybersecurity. The threat landscape continues to evolve as hackers and scammers grow bolder and more consistent as they find ways to obtain confidential data. Reactive measures, such as antivirus software, are no longer nearly enough to protect your organization and the data in its care. Perhaps one of the most alarming trends in recent years is the ...

When should I become DoD CMMC-compliant?

When should I become DoD CMMC-compliant?

Last year, the US Department of Defense (DoD) announced a new rule requiring defense contractors to become fully compliant with the Cybersecurity Maturity Model Certification (CMMC) process starting in late 2020. The new security standard aims to further secure the supply chain, especially given the relatively slow adoption rate of the Defense Federal Acquisition Regulation Supplement (DFARS), ...

Do You Need GCC High to Be CMMC DoD Compliant?

Do You Need GCC High to Be CMMC DoD Compliant?

Contractors and subcontractors working for the US Department of Defense (DoD) are required to comply with security regulations such as the Defense Federal Acquisition Regulation Supplement (DFARS) and the Cybersecurity Maturity Model Certification (CMMC). This is to ensure that they have the proper security protocols in place to safeguard controlled unclassified information (CUI). But what ...

Four Steps to Becoming CMMC Certified

Four Steps to Becoming CMMC Certified

If you are a contractor for the US Department of Defense (DoD), you’ve probably already prepared for Cybersecurity Maturity Model Certification (CMMC). The CMMC is a program that measures organizations’ cybersecurity maturity level and identifies whether a contractor's security protocols meet government standards. 

CMMC Cybersecurity Maturity Model Certification Explained

CMMC Cybersecurity Maturity Model Certification Explained

The Cybersecurity Maturity Model Certification (CMMC) is a set of guidelines for implementing cybersecurity measures across Department of Defense (DoD) contractors. The CMMC was designed to ensure that the 300,000-plus contractors and subcontractors operating in the defense industrial base (DIB) supply chain are safeguarding sensitive government information.

A Guide to CMMC 1.0: What Companies Should Know

A Guide to CMMC 1.0: What Companies Should Know

On 31 January 2020, the Department of Defense (DoD) launched the first finalized version of the Cybersecurity Maturity Model Certification (CMMC). The CMMC version 1.0 is a new set of regulations where organizations contracting with the DoD are required to acquire a certain certification level representing their cybersecurity capabilities. The model uses five levels to identify an organization's ...

CMMC 1.0 vs. NIST 800-171: Important Differences

CMMC vs FedRAMP: Steps to Achieving FedRAMP Compliance

CMMC vs FedRAMP: Steps to Achieving FedRAMP Compliance

Cloud-based computing has streamlined data processing, storage, and security, which is why federal agencies are encouraged to move their data and workflows to the cloud. And because there are numerous cloud service providers (CSPs) today, those that work with any US government entity must follow certain cybersecurity regulations. 

Tips to Prepare for a CMMC Audit

Tips to Prepare for a CMMC Audit

The Cybersecurity Maturity Model Certification (CMMC) is a cybersecurity framework created by the Office of the Under Secretary of Defense for Acquisition and Sustainment or OUSD(A&S). This new security framework was designed to ensure all contractors and subcontractors working for the United States Department of Defense (DoD) have sufficient cybersecurity measures to safeguard federal contract ...