Free Download: The Cybersecurity Maturity Model (CMMC) – Taking the first steps
Organizations tendering for new DOD (Department of Defense) contracts must submit a self-assessment against the requirements of NIST SP 800-171 to the DOD’s SPRS (Supplier Performance Risk System).
Beginning in 2021 and with increasing frequency in the coming years, organizations in the DOD supply chain that process, store, or transmit CUI (Confidential Unclassified Information) will be required to achieve compliance with the CMMC (Cybersecurity Maturity Model Certification) at the level defined in DOD contracts.
Compliance with NIST SP 800-171 and the CMMC requires extensive preparation. Organizations in the DOD supply chain should act now to ensure they are prepared. Read this paper to understand:
- The DFARS Interim Rule and how it prepares the ground for the CMMC
- Which organizations must comply with NIST SP 800-171 and the CMMC
- How the CMMC is structured and the goals each level is intended to achieve
- How to plan your CMMC implementation project