HELPFUL LINKS – CMMC-USA

Check out some of these links and resources to help your organization learn and prepare for the CMMC certification.

Department of Defense CMMC Homepage – Learn more directly from the DoD on CMMC and use their free Level 1 and Level 1 Assessment Guides to help your organization prepare!

Cybersecurity Maturity Model Certification (CMMC) (osd.mil)

CMMC-AB Main Page – Learn more about the CMMC Accreditation Body, the ecosystem it is made up of and who can help you achieve your CMMC.

CMMC-AB Home - CMMC-AB (Cybersecurity Maturity Model Certification

DFARS – Read the new DFARS clause and how NIST SP 800-171 and CMMC will impact Government contractors.

Federal Register :: Defense Federal Acquisition Regulation Supplement: Assessing Contractor Implementation of Cybersecurity Requirements (DFARS Case 2019-D041)

NIST.GOV – Explore more about the National Institute of Standards and Technology and how they support the Department of Defense.

National Institute of Standards and Technology | NIST

NIST SP 800-171 Assessment Methodology – this documents a standard methodology that enables a strategic assessment of a contractor’s implementation of NIST SP 800-171.

NIST SP 800-171 Assessment Methodology Version 1.2.1 6.24.2020.pdf (osd.mil)

SPRS database - Used by DoD contractors when performing Basic NIST SP 800-171 self-assessments, and to calculate resulting scores

Supplier Performance Risk System (SPRS) (disa.mil)

CMMC Level 3 Assessment Guide

This guide will be used by our Provisional Assessor to determine whether contractors satisfy the processes and controls required to obtain the CMMC. Visit https://www.acq.osd.mil/cmmc/draft.html or download a copy of the CMMC Level 3 Assessment guide below to begin to get an overview of your organization’s readiness for the CMMC!