The Department of Defense (DoD) is developing a new cybersecurity standard and certification for defense contractors, the Cybersecurity Maturity Model Certification (CMMC).
The CMMC will be based on NIST SP 800-171. For people that don’t understand “Federal Talk”, this means the standards that must be followed by defense contractors will be based on a set of standards generated by the National Institute of Standards and Technology.
The CMMC will have 5 levels of certification. The Feds will no longer rely on companies to self-certify their cybersecurity practices. This is a drastic change in the way things will be done.
Audit and Certification
The Cybersecurity Maturity Model Certification will start in January of 2020. Compliance with CMMC is a requirement in order to win new contracts.
CMMC initiative will require DoD contractor information systems to be certified compliant by a third party outside auditor.
Secure Merger specializes in NIST 800-171 assessments. Our assessment reviews your companies progress toward compliance with NIST 800-171 and list all deficiencies.
Penetration testing is also recommended if you are to be ready for the full implementation of CMMC in 2020.
We (Secure Merger) would be happy to help with your company cyber security assessment. Schedule a free consult: Contact Us