Great way to dive into CMMC

Solid course, gave me a better understanding of CMMC.

I thought it was very good, but it went through the material too quickly.

Thorough and a great course to get an introduction to the CMMC ecosystem.

Well put together and easy to follow

Very thorough and informative.

Helped to better understand the CMMC requirements

Awesome materials and brilliantly constructed and delivered

I like that the sections are short.

Very thorough course that was easy to understand. Would definitely recommend for defense subcontractors looking for a comprehensive overview.

All Good.

The time and effort Jacob put into this course to ensure the material sinks in and comes through without being dry is evident. I loved his jokes and humor as he shared why things were important, shared some of the nuances of the program, and helped us understand why this program is important and how we can implement it within our organizations. I especially liked that each section contained a quiz, so I could test my knowledge as I moved forward versus waiting until to the end to learn what I needed to study up on a bit more. I used this course as a preamble to taking the full CCP course so I could earn my certification and highly recommend it to anyone who is looking to get a referesher or who is new to CMMC and wants to understand an overview of the program, how to scope it, and how to find the appropriate support for your organization if you are going to be working with DoD contracts at various levels. Thank you, Jacob, for helping me feel more confident about my understanding of the CMMC program and feeling better prepared to take the CCP course this month!

Very informal

I thought it was insightful. A lot of real world examples were given and it was informative while being very entertaining. I got through it quite quickly. The quizzes at the end of each section along the path were helpful in maintaining that knowledge. Thank You GRC Academy!

Awesome course. Would like to see more courses that focuses on interpreting
and implementing the NIST 800-171 security controls.

Good course – covers a lot of material. Due to the plethora of acronyms for government organizations/regulations, it could be improved by more closely coordinating the bullet points onscreen with the vocal instruction. Overall, very informative !

This is a great Overview of CMMC. Covers all the associated topics and provides excellent references.

Bro — this was next level! Lots of stuff I had no idea about! Thank you for making this available to military veterans.

Completing this course is a great jump start for those that are new to the CMMC world and this will prepare you for what is to come on the journey of acquiring follow on training and certifications.

For those that are familiar with the cybersecurity aspect and may have lost touch, this is a great refresher as you get reintegrated back into this realm. Highly recommend this course and I also look forward to what is to come next.

This course was very digestible and clear. It made all the self studying and reading come together to fully understand. I would recommend this course to anyone looking to kickstart their career as a CCP, Assessor, consultant etc. in the CMMC scope of work.

As a Carahsoft employee this has been extremely helpful not only in CMMC
focused GTM strategies but compliance as a whole.

Excellent course for anyone looking to learn more about CMMC or NIST 800-171!

Each topic is logically broken down into bite-size videos, and I found my self practically glued to my notepad writing down all the valuable information.

This area has a lot of interconnected information originating from various published documents (NIST, FAR, DFAR, CMMC) that could easily be overwhelming or even overlooked by someone just entering this DoD compliance space. Every video section did a great job explaining the referenced documents, how they applied, and included links to each document on resource.

Not only do you walk away with new knowledge towards CMMC, but this course also provides a plan of action to start assist you and your organization with beginning this compliance journey on a strong and actionable foundation.

This course was outstanding! The bite-sized pieces of instruction were delicately balanced between the necessary information to cover and the right amount of it to cover. It was not overwhelming and it was easy to follow. The quizzes added value and reinforced each topic in a no nonsense-type of way. What was even better was that I actually enjoyed the course, it somehow was a bit fun to me!

If you have never heard of CMMC or are considering the certification, this is a great foundational course to familiarize yourself with it. Look no further!

Thank you GRC Academy and Jacob Hill. I look forward to exploring future courses.

Update: I just achieved the CMMC Certified Professional (CCP) certification! This course was such a huge help! It gave me a good foundation for starting my actual CCP course. It should be a pre-requisite for all RP and CCP courses, in my opinion.

This was an excellent course that thoroughly describes and easily breaks down the CMMC requirements and references. I would highly recommend this course to anyone looking to further develop and prepare themselves for CMMC roles.

The CMMC overview training provided by GRC Academy is nothing short of outstanding. Whether you want to improve your cybersecurity abilities or get CMMC certification, this course provides a well-rounded and interesting curriculum that will prepare you for today’s quickly expanding cybersecurity landscape. I strongly suggest it to anyone who is serious about learning the nuances of CMMC.

Just completed “CMMC Overview Training for Small and Medium Businesses (SMB)” offered by GRC Academy. For those who don’t know, the Cybersecurity Maturity Model Certification (CMMC) 2.0 is a DoD certification and compliance program that will apply to all DoD contractors – it ensures the government that the Defense Industrial Base is protecting its controlled unclassified information in accordance with security requirements.

Huge ‘Thank You’ to GRC Academy and Jacob Hill (CISSP-ISSEP, CEH, ITIL) for putting together such an informative, engaging and comprehensible course that had the right balance of material, case studies, quizzes and personality!

I highly recommend this training for anyone wanting to learn more about security requirements, NIST 800-171 and the CMMC – nearly all DoD contracts will require CMMC so don’t get left behind!

This was a great course to get a solid understand of NIST 800-171 and the CMMC certification process. Jacob Hill did a great job of breaking down all of the acronyms and references that support CMMC and made it easy to understand what reference should be used for scoping out an organization’s CMMC efforts. Each video provided great details, and the section quizzes helps to reinforce the content learned.

I would recommend this course for individuals who work with government agencies and use NIST 800-171 to prepare for CMMC efforts or audit and validate commercial vendors security controls.

As a relative newcomer to the CMMC space, and as a student preparing for the CMMC CCP exam, I found this training course to be a refreshing overview of key concepts surrounding the CMMC program, the federal regulations and laws that drive it, entities that comprise the CMMC Ecosystem, the NIST special publications that serve as its security control frameworks, and much more.

Jacob’s concise and detailed presentation style, in addition to the provided resources (e.g., DoD CIO CMMC documentation, the DFARS and FAR regulations, the control explorer) are valuable tools for any GRC professional’s utility belt especially as they venture into compliance and security for the Defense Industrial Base.

We are fortunate to have people like Jacob producing this kind of accessible yet high-quality training content.

After beginning to familiarize myself with NIST 800-171, and conducting a few independent assessments in my professional career, this course was fantastic to gather a solid overview and foundational level of knowledge to supplement the reading I was doing.

As the 171 versions continue to change with version numbers, I hope the content of this course evolves with it, or supplements are offered to provide an overview in a course format such as this to understand the most recent versions of all CMMC related requirements and frameworks.

Anyone interested in expanding their current knowledge of CMMC, or gaining a solid foundation, highly recommend this course!

Excellent course!! I enjoyed being able to pick up a lot of information in pieces. The course was laid out very well and tied together in a great way at the end. The quizzes at the end of each section were very helpful and in line to the main points captured in my notes. The resources alone are a fantastic value and I am excited to use them! I would recommend this course to any cyber security professional.

Awesome course! If you are a business that is required to become CMMC certified, or you are new to compliance and want to learn about CMMC, this is the place to start.

The lessons are broken down into understandable and clear sections. The quizzes at the end of each section are well-written and test your knowledge of what you just learned. I highly recommend this course. Thank You, Jacob.

very well put together to understand CMMC as a whole

Jacob Hill’s CMMC training course exemplified excellence. His adept breakdown of Federal contract information, controlled unclassified information, and covered defense information was particularly commendable, especially for individuals unfamiliar with these concepts. Moreover, the course provided a comprehensive discussion on crucial frameworks such as NIST 800-171, system security plans, and POA&M, enriching the learning experience with invaluable insights. Moreover, the course provided a thorough examination of FEDRAMP alongside a detailed analysis of the transition from CMMC 1.0 to CMMC 2.0, thus offering participants a comprehensive understanding of these pivotal frameworks. Also, as you go through every section of the training references are provided to follow along.

This course was amazing! I took the opportunity to learn something outside of my comfort zone. This course is engaging and has a lot of hands-on information that is connect to each model that will help fill in knowledge gaps. I highly recommend this course to anyone interested in expanding their knowledge about CMMC!

I enrolled in this course with a decade of military experience but no prior knowledge of the Cybersecurity Maturity Model Certification (CMMC). The study was a game-changer for me. It was structured to leverage my military background, making the complex concepts of cyber hygiene and security levels accessible and relatable.

The instructor was knowledgeable and adept at connecting the dots between military operations and cyber defense mechanisms, which I found immensely valuable. The practical exercises were particularly impactful, allowing me to apply theoretical knowledge in a simulated environment resembling real-world scenarios. By the end of the course, I gained a robust understanding of CMMC and felt equipped to integrate these practices into my current role. The resources provided were top-notch, and the support network of fellow course participants has become an invaluable asset to my professional network.

This course is a must for any military personnel transitioning into a cybersecurity role – it gets a resounding five stars from me.

Nicely done. I have coworkers from my team also taking this course. I like that you are receptive to feedback and are updating the course based on the latest information.

Overall the information was a very useful review. Will need to be updated with the draft CMMC 2.0 rules that just came out.

Some of the quiz questions were a bit non-useful… particularly those that have the user pick from a list of acronyms. Otherwise, I really enjoyed this course. Thanks again!

A lot of information to ingest as typical with anything government related, there are a ton of acronyms. Even though I was not a fan of the sub 2 minute lectures, I understand why they were broken up this way which helped reaffirm the information presented. I am pretty sure I will be watching some of these lectures a few more times.

I recently completed the “CMMC Overview Training for Small and Medium Businesses (SMB)” offered by GRC Academy and curated by Jacob Hill (CISSP-ISSEP, CEH, ITIL). CMMC is a cybersecurity compliance and certification framework created by the DoD to ensure that its supporting contractors implement the 110 requirements to protect its controlled unclassified information (CUI). The course was highly engaging, concise, and informative. I strongly recommend this training to anyone interested in learning about security requirements, NIST 800-171, and the CMMC. Almost all DoD contracts require CMMC compliance, so don’t miss out!

This was the most in-depth training that will make you fully understand what a CMMC certification means. I recommend GRC Academy for anyone looking to learn more about CMMC, FedRamp, and NIST 800-171, especially with Businesses that deal with DOD contracts. Easy to listen to and understand the information being taught. This is fantastic for those who want to learn about ways to make their digital assets secure.

Helpful explanation of the information

Each lesson was kept simple and easy to understand.

A thorough, paced and well-presented coverage of the CMMC processes and framework. Jacob intersperses candid comment where appropriate, which will add to your smile lines. I am impressed and thankful that Jacob offers this course to Veterans FoC, and I will definitely be looking to the GRC Academy for subsequent CMMC and GRC training and updates.

Sincere kudos and much appreciation, Jacob.

The training is nothing short of excellent. As if learning and understanding the requirements of CMMC is not confusing enough, this course will help you cut through the confusion (and varied opinions out there) and get you headed on the right path. It will provide you with the knowledge and resources, as well as a plan, to confidently move your company forward with CMMC.

The GRC Academy’s CMMC Overview Training is an outstanding course that offers a thorough understanding of cybersecurity requirements for defense contractors. It provides clear explanations of complex regulations like FCI, CUI, CDI, and various DFARS clauses, along with detailed guidance on NIST 800-171 and the FedRAMP program.

The course’s practical approach, with templates and actionable advice for SSPs and POA&Ms, is highly beneficial. Insights into CMMC 2.0 and its implementation process, as well as the roles of the Cyber AB and CAICO, are invaluable. The provided resources and step-by- step instructions are excellent for ensuring compliance and enhancing security measures.

really good course thought the questions were really challenging the way they
were worded

All Good.

Good course – covers a lot of material. Due to the plethora of acronyms for
government organizations/regulations, it could be improved by more closely
coordinating the bullet points onscreen with the vocal instruction. Overall,
very informative !

Thorough and a great course to get an introduction to the CMMC ecosystem.

Helped to better understand the CMMC requirements

This is a great Overview of CMMC. Covers all the associated topics and
provides excellent references.

Awesome materials and brilliantly constructed and delivered

Very thorough course that was easy to understand. Would definitely recommend
for defense subcontractors looking for a comprehensive overview.

Great way to dive into CMMC

Solid course, helped me learn a bit more about CMMC.

This was an excellent course that thoroughly describes and easily breaks down the CMMC requirements and references. I would highly recommend this course to anyone looking to further develop and prepare themselves for CMMC roles.

I thought it was very good, but it went through the material too quickly.

Great course overviewing what CMMC is

very well put together to understand CMMC as a whole

Each lesson was kept simple and easy to understand.

This course was very digestible and clear. It made all the self studying and reading come together to fully understand. I would recommend this course to anyone looking to kickstart their career as a CCP, Assessor, consultant etc. in the CMMC scope of work.

Great course. Very informative.

Awesome course!

An excellent foundation prior to attending a RP, CCA or CCP course. I’d encourage this course for any team member participating in a CMMC initiative regardless of the role.

I had recently entered a new role and this course helped me get up to speed and have meaningful conversations with my (already very knowledgeable) supervisor! I am very grateful for this resource and would definitely recommend it to others. I also only encountered one technical issue and it was resolved incredibly quickly!

Great course.

Being new to the world of governance, risk, and compliance; this course has helped provide a tremendous help in understanding an overview of CMMC. Jacob has done a fabulous job of providing information and guidance, to help make CMMC easier to digest. Thank you for the outstanding work and continued effort, Jacob!

This was the most in-depth training that will make you fully understand what a CMMC certification means. I recommend GRC Academy for anyone looking to learn more about CMMC, FedRamp, and NIST 800-171, especially with Businesses that deal with DOD contracts. Easy to listen to and understand the information being taught. This is fantastic for those who want to learn about ways to make their digital assets secure.

The GRC Academy’s CMMC Overview Training is an outstanding course that offers a thorough understanding of cybersecurity requirements for defense contractors. It provides clear explanations of complex regulations like FCI, CUI, CDI, and various DFARS clauses, along with detailed guidance on NIST 800-171 and the FedRAMP program.

The course’s practical approach, with templates and actionable advice for SSPs and POA&Ms, is highly beneficial. Insights into CMMC 2.0 and its implementation process, as well as the roles of the Cyber AB and CAICO, are invaluable. The provided resources and step-by- step instructions are excellent for ensuring compliance and enhancing security measures.