Graphic with fighter jet against blue sky that reads "CMMC Practice AC.L2-3.1.3: What You Need To Know "

CMMC Practice AC.L2-3.1.3: What You Need To Know 

The Cybersecurity Maturity Model Certification (CMMC) practice AC.L2-3.1.3 requires defense contractors to control the flow of Controlled Unclassified Information (CUI). But what does this mean, exactly? Keep reading to learn more about what compliance with this CMMC practice entails.  CMMC Practice AC.L2-3.1.3: the Basics According to the CMMC practice AC.L2-3.1.3, “Control CUI Flow,” companies within…

Graphic showing a folder with the logo of CMMCCompliance.us and a paper that reads: "Why is CMMC Important?" and a stamp that reads "Priority."'

Why Is CMMC Important? 

If you are still confused about the Cybersecurity Maturity Model Certification, a good place to start is by understanding its importance. Keep reading to learn what CMMC is, why you need it, and why it is important.  What Is CMMC? The Cybersecurity Maturity Model Certification is a cybersecurity framework created by the Department of Defense…

Graphic that reads "Can you self-certify CMMC?"

Can You Self-Certify CMMC? 

The Cybersecurity Maturity Model Certification can be a stressful topic for defense contractors. That’s why many of them wonder whether they can self-certify CMMC. In today’s post, we offer a clear, detailed overview of CMMC and self-certification. Keep reading to learn more.  Certifications Under CMMC Let’s begin by answering the question raised in the title…

Graphic that reads "CUI & Foreign Nationals"

Can CUI Be Shared With Foreign Nationals? 

As we have seen in previous posts, ITAR data cannot be shared with foreign nationals. But what about Controlled Unclassified Information (CUI), the main object of the Cybersecurity Maturity Model Certification (CMMC)? In today’s post, we discuss everything you need to know about CUI and foreign nationals. Keep reading to learn more.   What Is Controlled…

Graphic that reads "What Is a RPO in CMMC?"

What Is a CMMC RPO? 

When it comes to the Cybersecurity Maturity Model Certification (CMMC), there are many terms you need to be aware of. One of those acronyms is RPO or Registered Provider Organization. Keep reading to take a closer look at this important part of the CMMC ecosystem.  About Registered Provider Organizations (RPOs) Before we delve into the…

CMMC and FISMA 

You probably understand that FISMA is a piece of legislation that defines cybersecurity standards throughout the federal government. But what is FISMA, exactly, and ( what is its relationship with CMMC? Read on to discover the answers to these questions.  About CMMC The Cybersecurity Maturity Model Certification is a framework developed by the Department of…

Graphic that reads "CMMC and Background Checks"

Does CMMC Require Background Checks? 

You may think of the Cybersecurity Maturity Model Certification (CMMC) as a framework that deals exclusively with the technical side of cybersecurity. However, the human factor also plays a role in IT. So, does CMMC require background checks? Keep reading to find out.  What Is CMMC? The Cybersecurity Maturity Model Certification is a three-level model…