5(1)

CMMC Awareness Training for Defense Contractors (DIB)

Categories: CMMC, NIST

Play Video

Course Information

Are you overwhelmed by CMMC? This course will save you WEEKS of research and set you up for success as you prepare for CMMC!

This course has been completely UPDATED based on the December 2023 CMMC Program proposed rule!

Who is this course for?

Most CMMC training is geared towards assessors and consultants, but our CMMC Awareness course focuses on defense contractors and others who need to understand CMMC!

This awareness course is excellent for executives and others who need a higher-level understanding of CMMC. For practitioners who are responsible for managing CMMC compliance, we recommend our CMMC Overview Training.

This course provides an overview of the FAR and DFARS cyber contractual requirements, NIST 800-171, and CMMC!

It is ideal for organizations in the Defense Industrial Base (DIB) who need to comply with CMMC, as well as government personnel who manage DoD contracts and contractors.

Jacob Hill has been leading a small business towards CMMC certification for several years, and he also previously served as a DoD Contracting Officer Representative (COR)! His unique background allows him to simplify complicated topics.

The course is delivered in a bottom-line-up-front format and can leadership and even CMMC-focused sales teams. It does not go “into the weeds” of the security controls and strategies to comply with them, but rather focuses on the overall process.

CMMC is an evolving topic, and the course will be updated as new information becomes available.

Enroll Now

What is CMMC?

Cybersecurity Maturity Model Certification (CMMC) is a cybersecurity compliance and certification program which the United States Department of Defense (DoD) created that is focused on gaining assurance that its supporting contractors are implementing the 110 requirements to protect its controlled unclassified information (CUI). Nearly all DoD contractors will need to be CMMC compliant or certified to be able to do business with the DoD.

CMMC requirements should begin to appear in contracts 2025.

What is NIST 800-171?

The majority of CMMC’s requirements are based on NIST 800-171, “Protecting CUI in Nonfederal Systems and Organizations.” Most contractors are ALREADY required to comply with NIST 800-171 per DFARS 252.204-7012, and have been required to comply since December of 2017.

Are you compliant? If not, do you know what steps you need to take?

What Companies need to be CMMC Certified?

Nearly all DoD contractors will be required to comply with CMMC in some manner. CMMC consists of 3 levels, and the requirements vary per level:

  • CMMC Level 1
    • Implement 15 CMMC controls
    • Required for contracts with federal contract information (FCI)
    • Contractor is required to perform a self-assessment – no 3rd-party assessment is required
  • CMMC Level 2
    • Implement 110 CMMC controls
    • Required for contracts with CUI
    • Nearly all contracts will require a 3rd-party assessment by a C3PAO resulting in CMMC certification
  • CMMC Level 3
    • Implement 24 additional CMMC controls
    • Required for DoD’s most critical CUI programs
    • All contracts will require a 3rd-party assessment by DIBCAC resulting in CMMC certification

Enroll Now

Arm yourself with the knowledge you need to know to successfully navigate NIST 800-171’s and CMMC’s processes. Don’t let your business fail because you didn’t achieve compliance or certification.

Closing Thoughts

*  Note that this course is not affiliated with the DoD, the CyberAB (also known as the CMMC Accreditation Body), or the Cybersecurity Assessor and Instructor Certification Organization (CAICO).

Enroll Now

Featured Reviews

Greg Bandish

- 02/12/2024
(5)

As a seasoned Program Manager with a solid background in compliance, I found the CMMC awareness course to be exceptional. The content was concise, engaging, and precisely what’s needed for professionals navigating CMMC compliance intricacies. Jacob’s expertise was evident, simplifying complex topics with ease. This course is a must-have for anyone looking to bolster their compliance practices within the defense sector. Highly recommended.

View Credly Badge
Show More

What Will You Learn

  • What is Federal Contract Information (FCI)
  • What is Controlled Unclassified Information (CUI)
  • What DFARS 252.204-7012, 7019, 7020, and 7021 mean to you
  • What is NIST 800-171
  • What is a System Security Plan (SSP)
  • The 3 levels of CMMC
  • When CMMC will be required
  • Roles in the CMMC ecosystem
  • CMMC and Managed Service Providers (MSPs)
  • What is a Joint Surveillance Voluntary Assessment (JSVA)
  • Action plan

Course Content

Introduction00:03:46

5-Star Rating | 1 Course Reviews

Course Reviews

Greg Bandish

- 02/12/2024
(5)

As a seasoned Program Manager with a solid background in compliance, I found the CMMC awareness course to be exceptional. The content was concise, engaging, and precisely what’s needed for professionals navigating CMMC compliance intricacies. Jacob’s expertise was evident, simplifying complex topics with ease. This course is a must-have for anyone looking to bolster their compliance practices within the defense sector. Highly recommended.

View Credly Badge
Show More
  • All Levels
  • 1 Total Enrolled

  • 1 Hour 15 Minutes Duration

  • 23 Lectures

  • 12-Month Access

  • February 16, 2024 Last Updated

A course by

GRC Academy

Taught by

Founder of GRC Academy | CISSP-ISSEP, CCP

Material Includes

  • Spreadsheet with NIST 800-171, NIST 800-171A, and CMMC controls

Audience

  • DoD contractors
  • Defense Industrial Base (DIB)
  • Federal contractors
  • Small Businesses
  • Medium Businesses
  • Large Businesses
  • Government Entities
  • Anyone who wants to understand NIST 800-171 and CMMC