What is a CMMC policy Template? A CMMC (Cybersecurity Maturity Model Certification) policy template is a pre-structured document that outlines the cybersecurity policies an organization must have in place to comply with the CMMC framework, which is fundamentally NIST SP 800-171 controls and NIST SP 800-171A Assessment Objectives (AOs)....

External Service Providers and CMMC On Thursday August 3rd, 2023 the Office of Information and Regularly Affairs (OIRA) sent the CMMC world into a frenzy by inadvertently publishing what appeared to be updated CMMC Model Overview, CMMC Assessment Guide, CMMC Scoping Guide, and CMMC Hashing Guide documents. OIRA has since...

Common acronyms that contractors need to know. CMMC. DIBCAC. DFARS. Are you a contractor having a tough time keeping up with acronyms? We’re put together a list of acronyms contractors in the defense industrial base will see. 1. Authorized C3PAO = Authorized CMMC 3rd Party Assessment Organization. “A C3PAO...

The Department of Defense published the “Cybersecurity Maturity Model Certification (CMMC) 2.0 Updates and Way Forward†document and outlines the CMMC background and way forward based on the Department’s internal review. Various modifications to the CMMC model are expected to take effect in the future. One of the modifications...

A brief article on how sanitizing paper media that contains CUI can be performed to meet NIST SP 800-171 / Cybersecurity Maturity Model Certification (CMMC) requirements.

This is a short article on understanding on how smart watches can potentially fall in-scope for the NIST SP 800-171 / Cybersecurity Maturity Model Certification (CMMC) Maturity Level 3 requirements.