Cybersecurity Maturity Model Certification 1.0 (CMMC 1.0)
These publications describe Cybersecurity Maturity Model Certification (CMMC), the Department of Defense (DoD) program to protect Controlled Unclassified Information (CUI) by bolstering the cybersecurity of the Defense Industrial Base (DIB) sector.
Publisher:
Software Engineering Institute
Abstract
The DIB is the network of more than 200,000 businesses, organizations, and universities that research, engineer, develop, acquire, design, produce, deliver, sustain, and operate military weapons systems. The DIB is under constant threat of cyber warfare activities by cybercriminals and state-sponsored actors. To help prevent losses of intellectual property and CUI, SEI researchers helped the federal government develop CMMC, a program built upon established cybersecurity standards and best practices to reduce the risk of cyber threats in the DIB.
Collection Contents
-
Overview of Practices and Processes of the CMMC 1.0 Assessment Guides (CMMC 1.0)
March 3, 2021 • White Paper
By Douglas Daniel Gardner
This document is intended to help anyone unfamiliar with cybersecurity standards get started with the Department of Defense (DoD) Cybersecurity Maturity Model Certification (CMMC).
read -
The CMMC Level 1 Assessment Guide: A Closer Look
December 8, 2020 • Podcast
By Katie C. Stewart, Andrew F. Hoover
Andrew Hoover and Katie Stewart, architects of the CMMC 1.0 model, discuss the Level 1 Assessment Guide for the CMMC.
learn more -
The CMMC Level 3 Assessment Guide: A Closer Look
December 8, 2020 • Podcast
By Andrew F. Hoover, Katie C. Stewart
Andrew Hoover and Katie Stewart, architects of the CMMC 1.0 model, discuss the Level 3 Assessment Guide for the CMMC and how it differs from the Level 1 Assessment Guide.
learn more -
An Introduction to CMMC Assessment Guides
December 8, 2020 • Podcast
By Katie C. Stewart, Andrew F. Hoover
In this SEI Podcast, Andrew Hoover and Katie Stewart, architects of the CMMC 1.0 model, discuss the CMMC assessment guides, how they were developed, and how they can be used.
learn more -
Optimizing Process Maturity in CMMC Level 5
October 13, 2020 • Podcast
By Katie C. Stewart, Andrew F. Hoover
Andrew Hoover and Katie Stewart, architects of the CMMC 1.0 model, discuss the Level 5 process maturity requirements, which are standardizing and optimizing a documented approach for CMMC.
learn more -
Reviewing and Measuring Activities for Effectiveness in CMMC Level 4
October 8, 2020 • Podcast
By Andrew F. Hoover, Katie C. Stewart
Andrew Hoover and Katie Stewart, architects of the CMMC model, discuss reviewing and communicating CMMC activities and measuring those activities for effectiveness, which are requirements of Level 4 of the model.
learn more -
CMMC Levels 1-3: Going Beyond NIST SP-171
July 1, 2020 • Podcast
By Katie C. Stewart, Andrew F. Hoover
Andrew Hoover and Katie Stewart, CMMC architects, discuss Levels 1-3 of the model and what steps organizations need to take to move beyond NIST 800-171.
learn more -
Documenting Process for CMMC
July 30, 2020 • Podcast
By Katie C. Stewart, Andrew F. Hoover
Andrew Hoover and Katie Stewart, architects of the Cybersecurity Maturity Model Certification (CMMC) 1.0, discuss process documentation, a Level 2 requirement.
learn more -
Developing an Effective CMMC Policy
August 25, 2020 • Podcast
By Andrew F. Hoover, Katie C. Stewart
Andrew Hoover and Katie Stewart, architects of the Cybersecurity Maturity Model Certification (CMMC) 1.0, present guidelines for developing an effective CMMC policy.
learn more -
CMMC Scoring 101
September 3, 2020 • Podcast
By Katie C. Stewart, Andrew F. Hoover
Andrew Hoover and Katie Stewart, architects of the Cybersecurity Maturity Model Certification (CMMC) 1.0, discuss how assessed DIB organizations are scored according to the model.
learn more -
CMMC Scoring Fact Sheet 1.0 (CMMC 1.0)
June 3, 2020 • Fact Sheet
This document explains the concept of CMMC assessment level scoring.
read -
Hitting the Ground Running: Reviewing the 17 CMMC Level 1.O Practices (CMMC 1.0)
April 16, 2020 • Webinar
By Matthew Trevors, Gavin Jurecko
In this webcast, CMMC Architects, Gavin Jurecko, and Matt Trevors provide insight on how to evaluate and assess your organization's readiness for meeting the practice requirements of CMMC Level 1.
watch -
CMMC—Securing the DIB Supply Chain with the Cybersecurity Maturity Model Certification Process 1.0 (CMMC 1.0)
June 3, 2020 • Fact Sheet
This document explains the concept of process maturity, how it applies to cybersecurity, and the steps an organization can take to navigate the five CMMC levels of process maturity.
read -
Follow the CUI: Setting the Boundaries for Your CMMC Assessment 1.0 (CMMC 1.0)
September 16, 2020 • Webinar
By Matthew Trevors, Gavin Jurecko
In this webcast, Model Architects Gavin Jurecko and Matt Trevors reviewed several steps for identifying CUI exposure in terms of their critical services and the assets that support them.
watch -
The DoD’s Cybersecurity Maturity Model Certification and Process Maturity 1.0 (CMMC 1.0)
April 9, 2020 • Webinar
By Katie C. Stewart, Andrew F. Hoover
This webcast provides insight into how organizations can prepare for CMMC.
watch -
Building the Cybersecurity Maturity Model Certification 1.0 (CMMC 1.0)
July 28, 2020 • News
In just one year, the SEI and its collaborators created one of the institute's most impactful projects.
read -
INtersect: Cybersecurity Maturity Model Certification | Role of the Cybersecurity Engineer 1.0 (CMMC 1.0)
March 19, 2020 • Video
Matthew Butkovic interviews Matt Trevors on the new Cybersecurity Maturity Model Certification, or CMMC.
watch -
2019 SEI Year in Review
June 17, 2020 • Annual Report
The 2019 SEI Year in Review highlights the work of the institute undertaken during the fiscal year spanning October 1, 2018, to September 30, 2019.
read