The Cybersecurity Maturity Model Certification (CMMC)

Subscribe
Resources for the Cybersecurity Maturity Model Certification (CMMC)
Subscribe
Kristen Soles

CPA, Partner - Government Contracting Industry Leader

Contact Kristen View full biography
Bhavesh N. Vadhani

CISA, CRISC, CGEIT, PMP, CDPSE, Principal, National Director, Cybersecurity, Technology Risk, and Privacy

Contact Bhavesh View full biography

Prepare your cybersecurity controls and practices to protect DOD data and qualify for federal contracts

The Department of Defense’s Cybersecurity Maturity Model Certification (CMMC) aims to strengthen security controls and practices to help protect sensitive DOD data held by contractors and their supply-chain partners, particularly Controlled Unclassified Information (CUI). As a result,  DOD contractors and subcontractors now need to demonstrate compliance with CMMC standards and a certain level of maturity to qualify to win federal contracts, meaning that before the contract award they’ll need to be assessed on up to 171 security practices across 17 security domains, and on the maturity of their security processes. CMMC is expected to be rolled out through FY 2026 in a phased manner to allow DOD contractors (prime and sub) adequate time to establish, implement, and demonstrate the required level of maturity in their cybersecurity posture. CohnReznick can help your organization achieve the right level of maturity based on the types of sensitive DOD data your organization handles – or expects to handle in the future. Learn more

Cybersecurity Maturity Model Certification (CMMC) – What's new?

Under the CMMC, contractors will be assessed on their implementation of required cybersecurity controls, technical practices, and processes against a maturity scale. Register for this timely webinar to learn what you need to know about CMMC compliance.

Watch on-demand webinar

CMMC Video Gallery

Explore our archive of videos to learn more about cybersecurity controls and practices for the CMMC compliance required to win DOD contracts.

Explore video archive

Cybersecurity Maturity Model Certification (CMMC): A road map to compliance

10/7/2020

You know you need Cybersecurity Maturity Model Certification (CMMC) to qualify for Defense Department contracts, but where to begin? Use our tool to get started.

Learn more

Taking the first steps toward CMMC compliance

6/4/2020 | Bhavesh Vadhani, Kristen Soles, Ali Khraibani

Learn the basics of the practice and process requirements for each level of the Department of Defense’s Cybersecurity Maturity Model Certification (CMMC).

Learn more

FAQ: The Cybersecurity Maturity Model Certification (CMMC) standard

4/23/2020 | Bhavesh Vadhani, Kristen Soles, Ali Khraibani

Read our answers to the most common questions we receive about the Department of Defense’s new security standard’s components and timing.

Learn more

Get the basics: The DOD's new CMMC Standard

3/3/2020 | Bhavesh Vadhani

Here’s what to know about the Cybersecurity Maturity Model Certification (CMMC) and how to prepare to comply with it.

Learn more

Explore more content on GovCon360°

Featured

GovCon360° Resource Center

Stay abreast of GovCon procurement news, CMMC regulations, and cost accounting standards (CAS). Click to explore our insights, webinars, tools and checklists.

All Insights

 

Related services

Accredited Cybersecurity Maturity Model Certification (CMMC) assessment and consulting services

Government Contracting

Government Contracting Technology Consulting

Cybersecurity, Technology Risk, Privacy