Cybersecurity Maturity Model Certification (CMMC)
The Cybersecurity Maturity Model Certification (CMMC), is the next step in the DODís efforts to secure the Defense Industrial Base. The DOD has announced that it is creating a cybersecurity assessment model and certification program. This announcement signals to industry an end to the self-compliance period. Unlike prior years, contracting authorities will not accept only documents indicating compliance to NIST-800-171. Contractors will be assessed based on the implementation of actual controls in addition to their policies and documentation. These assessments will result in certification levels of 1 to 5, with 5 being the most secure. The higher your companyís certification level, the more contracts you will be qualified to bid on.
According to DOD, the CMMC will flow down to all subcontractors. They also state that all future RFPs will require a CMMC level regardless of handling Controlled Unclassified Information (CUI).
- CMMC Rev. 1.0 will be released in January 2020
- Will be included in RFIís staring in June 2020
- Will be included in RFPís starting in Fall 2020
FY Consulting could assist you achieve this certification to maximize your chance of qualifying to bid on future DOD related RFPs.
For additional information on the implementation of CMMC, email email@example.com or call 908-875-7466.