CMMC POA&M Explained: What You Can Include Under 48
Understand what you can include in a CMMC POA&M under the latest 48 CFR rule. Learn which Level 2 controls are eligible, what “88 points” really means, and how to stay compliant with DoD (now DoW- Department of War) cybersecurity requirements. A POA&M in CMMC stands for “Plan of Actions and Milestones.” It is a […]
CMMC Level 1 vs CMMC Level 2: What Is the Difference?
As you set your Cybersecurity Maturity Model Certification goals, it is important to have a solid grasp of the different compliance tiers available. For example, what is the difference between CMMC Level 1 and CMMC Level 2? In today’s blog post, we take a closer look. About CMMC The acronym CMMC stands for Cybersecurity Maturity […]
CMMC Level 2 Compliance Checklist (With Printable File)
[vc_row][vc_column][vc_column_text]When aiming to achieve CMMC Level 2 compliance, it can be difficult to keep track of all the practices you must observe as a defense contractor. With that in mind, today we bring you a straightforward introduction to CMMC Level 2 compliance, plus a handy checklist you can use to understand where you stand and […]
CMMC Practice AC.L2-3.1.3: What You Need To Know
The Cybersecurity Maturity Model Certification (CMMC) practice AC.L2-3.1.3 requires defense contractors to control the flow of Controlled Unclassified Information (CUI). But what does this mean, exactly? Keep reading to learn more about what compliance with this CMMC practice entails. CMMC Practice AC.L2-3.1.3: the Basics According to the CMMC practice AC.L2-3.1.3, “Control CUI Flow,” companies within […]
Why Is CMMC Important?
If you are still confused about the Cybersecurity Maturity Model Certification, a good place to start is by understanding its importance. Keep reading to learn what CMMC is, why you need it, and why it is important. What Is CMMC? The Cybersecurity Maturity Model Certification is a cybersecurity framework created by the Department of Defense […]
Can You Self-Certify CMMC?
Certifications Under CMMC Can you self-certify CMMC? The answer is yes, but only if you aim to achieve CMMC Level 1. In all other cases, self-certification is not possible. CMMC comprises three progressive levels that mandate an increasing number of cybersecurity practices as follows: Level 3 (Expert): 110+ practices Level 2 (Advanced): 110 practices Level […]
Is Multifactor Authentication (MFA) Required for CMMC?
Anyone who has ever used an online service such as email or social media is familiar with the term “multifactor authentication.” But is it required as part of the Cybersecurity Maturity Model Certification (CMMC)? In today’s post, we provide all the answers you need. What Is Multifactor Authentication? Multifactor authentication (or MFA for short) is […]
Can CUI Be Shared With Foreign Nationals?
As we have seen in previous posts, ITAR data cannot be shared with foreign nationals. But what about Controlled Unclassified Information (CUI), the main object of the Cybersecurity Maturity Model Certification (CMMC)? In today’s post, we discuss everything you need to know about CUI and foreign nationals. Keep reading to learn more. What Is Controlled […]
What Is a CMMC RPO?
When it comes to the Cybersecurity Maturity Model Certification (CMMC), there are many terms you need to be aware of. One of those acronyms is RPO or Registered Provider Organization. Keep reading to take a closer look at this important part of the CMMC ecosystem. About Registered Provider Organizations (RPOs) Before we delve into the […]