- CMMC Readiness
- Maturing from one CMMC level to the next
- Gap analysis
- Control Selection and Tailoring
- Control Implementation guidance
- Develop System Security Plan (SSP)
- Develop Plan of Action and Milestones (POA&Ms)
- Audit ready artifacts
The Cybersecurity Maturity Model Certification (CMMC) is a unified cybersecurity standard required for contractors and subcontractors working with the Department of Defense (DoD) and consists of five levels requiring an independent third-party certification by an accredited organization. Cybersecurity Manager Lizzie Tinker is certified as one of the first Provisional Assessors nationwide for CMMC and Elliott Davis is a candidate for Certified Third-Party Assessor Organization (C3PAO) by the CMMC Accreditation Body.
Now is the time for businesses to assess and prepare. Starting this year the DoD will begin including the CMMC certification as a requirement in some request for proposals (RFP) and all contracts will require the certification by 2026.