// UNMANNED SYSTEMS AND NEXT-GEN WARFARE TERM
CMMC
Cybersecurity Maturity Model Certification (CMMC) is a U.S. Department of Defense program that verifies defense contractors have the proper cybersecurity measures in place to protect sensitive government information. It sets different levels of security requirements that companies must meet to be eligible for government contracts.
TECHNICAL DEFINITION
Cybersecurity Maturity Model Certification (CMMC) is a U.S. Department of Defense (DoD) framework designed to enforce and verify cybersecurity standards across the Defense Industrial Base (DIB). It requires contractors to implement specific cybersecurity practices and undergo assessments to protect Federal Contract Information (FCI) and Controlled Unclassified Information (CUI) based on a tiered maturity model.
BACKGROUND
The Cybersecurity Maturity Model Certification (CMMC) is an assessment framework and assessor certification program designed for a variety of standards published by the National Institute of Standards and Technology.
READ MORE ON WIKIPEDIASYNONYMS & ALIASES
- CMMC Framework
- DoD Cybersecurity Certification
- Defense Contractor Cybersecurity
- CMMC Compliance
- Cybersecurity Maturity Model
USAGE NOTE
Compliance with the appropriate CMMC level is increasingly becoming a mandatory requirement for bidding on and winning DoD contracts.
DEVELOPERS
Organizations developing technology related to CMMC.
Develops and operates cloud computing platforms like Azure Government and Microsoft 365 GCC High, which are specifically designed to help U.S. defense contractors meet CMMC, DFARS, and ITAR compliance requirements for handling Controlled Unclassified Information (CUI).
The official accreditation body of the CMMC Ecosystem and the sole authorized non-governmental partner of the U.S. Department of Defense in implementing and overseeing the CMMC standard. They develop the processes and infrastructure for CMMC assessments and accreditations.
Provides a cloud-based platform for secure collaboration, identity and access management, and supply chain management for the aerospace and defense industry. Their solutions help defense contractors meet security requirements mandated by CMMC.
Develops an end-to-end encrypted email and file sharing platform specifically designed to help defense contractors protect CUI and meet the compliance requirements of CMMC and DFARS without requiring a full 'rip-and-replace' of existing IT systems like Microsoft 365.
A Managed Security Service Provider (MSSP) that offers a CMMC-compliant, managed IT and security service called CMMCEnclave. This technology solution provides a secure, pre-configured environment for DIB companies to store and process CUI.
A managed service and security provider that focuses on implementing Microsoft cloud solutions (Azure Government, Microsoft 365 GCC High) to help aerospace and defense contractors meet complex cybersecurity compliance requirements, including CMMC and DFARS.
Develops a cybersecurity and compliance management software platform. The platform includes a specific CMMC framework that helps organizations manage their entire compliance lifecycle, from assessments and gap analysis to remediation tracking and reporting.
Develops software that automates the auditing of network devices like routers, switches, and firewalls for compliance. Their tools can accurately check device configurations against CMMC controls, reducing manual effort and identifying vulnerabilities.