Author: bnsuperadmin

What Are the CMMC Requirements for Subcontractors? 

Graphic that reads "CMMC requirements for subcontractors"

At this point, you probably know that defense contractors will be required to achieve CMMC compliance. But what about subcontractors? In today’s post, we explore this important topic, including what CMMC and other rules say specifically about subcontractors.  CMMC and Defense Contractors CMMC is short for Cybersecurity Maturity Model Certification, a cybersecurity framework designed by […]

CUI vs FCI: What Is the Difference? 

Graphic that reads "CUI vs FCI."

While Controlled Unclassified Information (CUI) tends to get all the attention, the Cybersecurity Maturity Model Certification (CMMC) also aims to protect Federal Contract Information (FCI). Read on to learn more about FCI and CUI, including their differences and how to safeguard them according to CMMC.   What Is FCI? The term Federal Contract Information refers to […]

What Are ITAR and EAR? 

Graphic that reads "What Are ITAR and EAR?"

ITAR and EAR are two sets of regulations with similar purposes. However, there are also some important differences between them. Keep reading to learn more about ITAR and EAR, including a detailed review of their scope and application.  What Is ITAR? The International Traffic in Arms Regulations (or  ITAR)  is a set of controls administered […]

Can You Self-Certify CMMC? 

Graphic that reads "Can you self-certify CMMC?"

Certifications Under CMMC Can you self-certify CMMC? The answer is yes, but only if you aim to achieve CMMC Level 1. In all other cases, self-certification is not possible. CMMC comprises three progressive levels that mandate an increasing number of cybersecurity practices as follows: Level 3 (Expert): 110+ practices Level 2 (Advanced): 110 practices Level […]

Is Multifactor Authentication (MFA) Required for CMMC? 

Graphic that reads "Is Multifactor Authentication (MFA) Required for CMMC? "

Anyone who has ever used an online service such as email or social media is familiar with the term “multifactor authentication.” But is it required as part of the Cybersecurity Maturity Model Certification (CMMC)? In today’s post, we provide all the answers you need.  What Is Multifactor Authentication? Multifactor authentication (or MFA for short) is […]

Can CUI Be Shared With Foreign Nationals? 

Graphic that reads "CUI & Foreign Nationals"

As we have seen in previous posts, ITAR data cannot be shared with foreign nationals. But what about Controlled Unclassified Information (CUI), the main object of the Cybersecurity Maturity Model Certification (CMMC)? In today’s post, we discuss everything you need to know about CUI and foreign nationals. Keep reading to learn more.   What Is Controlled […]

What Is a CMMC RPO? 

Graphic that reads "What Is a RPO in CMMC?"

When it comes to the Cybersecurity Maturity Model Certification (CMMC), there are many terms you need to be aware of. One of those acronyms is RPO or Registered Provider Organization. Keep reading to take a closer look at this important part of the CMMC ecosystem.  About Registered Provider Organizations (RPOs) Before we delve into the […]

CMMC and FISMA 

You probably understand that FISMA is a piece of legislation that defines cybersecurity standards throughout the federal government. But what is FISMA, exactly, and ( what is its relationship with CMMC? Read on to discover the answers to these questions.  About CMMC The Cybersecurity Maturity Model Certification is a framework developed by the Department of […]

DFARS 7012: How to Submit Your SPRS Score by Email 

Graphic that reads "DFARS 7012: How to Submit Your SPRS Score by Email "

Defense contractors need to self-assess their compliance with NIST SP 800-171 into the Supply Performance Risk System (SPRS). However, some contractors experience difficulties gaining access to the system through the Procurement Integrated Enterprise Environment (PIIE). If that’s your case, we have good news: you can also submit your SPRS score via email. In today’s post, […]