Start Your CMMC Gap Assessment and Remediation Today!

Using smart technology and a partnership approach, we will start with a gap assessment for CMMC Level 1 and provide you action plans to achieve CMMC Level 3.

• Assess your readiness for CMMC Level 1 Certification
• Remediation Support Included
• Target Architecture report to achieve CMMC Level 3 Certification Provided

 

Contact us today to discuss your CMMC gap
assessment and remediation support plan!

 


Frequently Asked Questions:

1) What is CMMC?
Cybersecurity Maturity Model Certification (CMMC) is a unifying standard for the implementation of cybersecurity across the Defense Industrial Base (DIB).

2) When did CMMC go in effect?
The standard was released by the US Department of Defense (DoD) and became effective November 30, 2020.

3) What does CMMC do?
CMMC aims to standardize and improve cybersecurity practices within the Defense Department and Defense Industrial Base (DIB) ecosystem. It ensures that DIB companies implement appropriate cybersecurity practices and processes to protect Federal Contract Information (FCI) and Controlled Unclassified Information (CUI) within their unclassified networks.

4) Who does CMMC apply to?
CMMC applies to DIB contractors who’s unclassified networks possess, store, or transmit CUI as well as DIB contractors who’s unclassified networks possess Federal Contract Information (FCI). Entities that solely produce Commercial-Off-The-Shelf (COTS) products do not require a CMMC certification.

5) What are the CMMC Levels?
There are 5 CMMC Levels; each with associated controls and processes. CMMC Level 5 Certification is the highest (demonstrating advanced cyber hygiene); while Level 1 indicates basic cyber hygiene. CMMC Level 3 is great benchmark to target as it indicates “good cyber hygiene” and demonstrates full compliance with NIST SP 800-171 r1 and the Federal Acquisition Regulation (FAR). The DoD will specify the required CMMC level in Requests for Information (RFIs) and Requests for Proposals (RFPs).

6) Who can provide CMMC assessments?
Authorized and accredited CMMC Third Party Assessment Organizations (C3PAOs) will conduct assessments and issue CMMC certificates to Defense Industrial Base (DIB) companies at the appropriate level. ControlCase will assist with getting you ready for the assessment – we provide gap assessment and remediation support.