CMMC Compliance

Is your business required to comply with CMMC?

The Cybersecurity Maturity Model Certification (CMMC) is a set of standards and guidelines that apply to companies that provide services to the U.S. Department of Defense (DoD) and handle Controlled Unclassified Information (CUI). The CMMC applies to all organizations that contract with the DoD, regardless of their size or location. This includes prime contractors, subcontractors, and suppliers at all tiers.

What does it mean?

Companies that fall under the jurisdiction of the CMMC must meet certain cybersecurity requirements in order to be compliant. These requirements vary depending on the level of maturity the company has achieved, and are based on the following five maturity levels:

  • Level 1: Basic Cyber Hygiene
  • Level 2: Intermediate Cyber Hygiene
  • Level 3: Good Cyber Hygiene
  • Level 4: Proactive
  • Level 5: Advanced/Progressive

Companies that work with the DoD must attain a specific level of maturity, depending on the nature of their work. They will be required to have an independent third-party assessor to certify their compliance with the standard.

What protections do I need?

Some of the common protections that companies may need to implement to be compliant with the CMMC standard include:

  • Firewall
  • Network segmentation
  • Encryption
  • Identity and access management
  • Security incident management
  • Risk management
  • Cybersecurity training
  • Continuous monitoring
  • Vulnerability management
  • Security assessment and authorization
CMMC Compliance

Did you know the DoD has already started including CMMC compliance requirements in some RFPs?

The Department of Defense (DoD) has announced that the CMMC certification will be a requirement for all DoD contracts by the end of the fiscal year 2025. Starting in the fiscal year 2020, the CMMC will be included in Requests for Proposal (RFPs) for certain contracts and will be required for award by the end of the fiscal year 2025.

However, it is important to note that the DoD has already started including language in contracts that requires contractors to comply with certain CMMC requirements. This means that some companies may need to meet certain CMMC requirements as soon as they are awarded a contract.

It’s important that companies that work with the DoD start familiarizing themselves with the CMMC standard as soon as possible and start implementing the appropriate measures to comply with the standard.

 

Am I compliant? What do I need?

This is where we are here to help. Plus 1 Technology is an industry leader in technology solutions for manufacturing firms. We offer our assessment typically for $9,999. For a limited quantity, we are dropping a 9! We are allowing firms to book their assessments now for only $999.

Our assessment doesn’t require admin passwords, network credentials, or any other IT-related information. Our assessment will let you know what your firm needs to address technically to meet these new guidelines. We schedule a quick 45-minute call after the assessment to discuss our findings. After our report is delivered you are under no obligation to purchase any products or services from us. If you wish to use our services to remediate the issues we have uncovered, we will provide you with a $500 credit.

Want to know if your organization meets CMMC compliance?

Use the form below to reserve one of our discounted assessments. Act fast there are only 15 assessments left at this price.