NIST 800-171 Support
The Department of Defense (DoD) has announced the introduction of a new program called the Cybersecurity Maturity Model Certification (CMMC). CMMC will be the framework for the enforcement of the department’s existing Defense Federal Acquisition Regulation Supplement (DFARS) requirements. The current DFARS cybersecurity requirements were implemented in December 2017 to provide security protection for controlled unclassified information (CUI) as directed through the enforcement of NIST SP800-171 security controls. CMMC has a goal of improving CUI security by introducing a formal audit program for compliance. The CMMC framework will incorporate security processes and practices to levels (one through five). The higher the level, the more complex the requirements will be. It’s important to note that ANY organization that does business with the Department of Defense must meet, at the very least, all the provisions of the basic maturity level (Level 1) of the CMMC program. 1ClickSecurity has supported CMMC requirements for companies doing business with the DoD. Through our extensive experience with supporting Federal agencies through the Risk Management Framework, we have a key advantage over our competitors when it comes to understanding NIST control requirements.
We can help your organization, no matter the size, in understanding your current maturity levels and how to achieve higher levels of maturity. We can help you save your existing or new DoD contracts.