As cyber crime has become more sophisticated, the Department of Defense has implemented measures to protect its supply chain against malicious attacks. One of these is the DoD’s new cybersecurity standard, the Cybersecurity Maturity Model Certification (CMMC).

CMMC focuses on protecting — and better defining — the unclassified information categorized as federal contract information (FCI) and controlled unclassified information (CUI). The framework aligns with NIST 800-171 and NIST 800-172, which gives you a head start if you’re already in compliance with these standards.

CMMC marks a clear shift toward a “trust, but verify” model for cybersecurity compliance within the DoD supply chain. If you’re new to this cybersecurity framework, check out Are You Ready for CMMC? Getting on the Right Track with the New DoD Cybersecurity Framework, a guide from AuditBoard and RSM US LLP that covers:

• Whether CMMC applies to your organization, implementation requirements and costs, as well as compliance deadlines.
• The three different CMMC maturity levels, and which level your organization should be targeting.
• How CMMC maps to NIST 800-171 and NIST 800-172, if your organization has already achieved alignment with the NIST standard.
• A CMMC Preparation Checklist to help you get started.

See more details about the requirements in this downloadable resource, then start scoping for CMMC today!