CMMC, the Cybersecurity Maturity Model Certification, is a formal certification intended to ensure that appropriate levels of cybersecurity controls and processes are in place to protect controlled unclassified information (CUI) residing on DoD contractor networks. Since its creation in 2019, organizations that work with the DoD have been tasked with working toward certification while staying current with changes to the CMMC.
Need Help Implementing CMMC?
As an approved Registered Provider Organization (RPO) by The Cyber AB (formerly the Cybersecurity Maturity Model Certification (CMMC) Accreditation Board), Appalachia Technologies provides full-scope CMMC services, from assessments, writing your System Security Plan and other documentation, expert penetration testing, or full scope CMMC-compliant managed IT services. Our team of Registered Practitioners (RPs) perform CMMC readiness assessments to help prepare DIB contractors for Certified Third-Party Assessor Organization (C3PAO)s audits by identifying gaps and offering remediation solutions. Our proprietary assessment process was designed by military cybersecurity experts, setting Appalachia apart from competitors who perform assessments as a “paper only” exercise. Our assessments are faster, more accurate, and provide actionable cybersecurity intelligence to our customers.
With the official DoD instructions to calculate SPRS scores, we have created a tool to allow you to calculate your score quickly and easily.
CMMC 2.0
In early November 2021, the DoD finally published their updated CMMC standard, CMMC version 2.0. They expanded upon it a bit in a special webinar November 9, 2021. It's a dramatic shift from the version 1.02 standard.
CMMC News & Town Hall Updates
CMMC has been evolving since its inception, with the November 2021 reveal of CMMC 2.0 marking the most significant update (these changes can be found HERE). Since the reveal of 2.0, The Cyber AB (formerly the CMMC Accreditation Board (CMMC-AB)) has been holding regular Town Hall meetings to provide updates. In an effort to help navigate these changes and the impact on organizations, we have provided summaries of the meetings below, as well as other valuable and newsworthy updates.
What is the Cybersecurity Maturity Model Certification 1.0 (CMMC 1.0)?
CMMC stands for “Cybersecurity Maturity Model Certification”. The CMMC is a formal certification intended to ensure that appropriate levels of cybersecurity controls and processes are in place to protect controlled unclassified information (CUI) residing on DoD contractor networks. If your business offers products and/or services to the DoD or a DoD contractor, the CMMC will apply to you.