CMMC Awareness Training for Defense Contractors (DIB)

Do you need to educate your organization on CMMC?

Achieving initial CMMC certification/compliance is just the beginning – your staff must understand CMMC to maintain compliance long-term. Equip your team with the knowledge they need to operate in compliance with CMMC (as required by control AT.L2-3.2.2).

Jacob Hill is leading the CMMC charge at a defense contractor and created this course specifically for other contractors so they can quickly get up to speed on CMMC!

Interested in more than 25 licenses? Contact us for bulk discounts.

Who Should Take This Course?

This awareness course is for defense contractor personnel who need a higher-level understanding of CMMC.

Personnel involved in managing CMMC compliance should take our more detailed CMMC Overview Training.

This course is also available for sale to government on GSA Advantage.

Why Should You Take This Course?

CMMC certification (or compliance) will be required to win DoD contracts.

Jacob Hill has been leading the CMMC charge at a small business for several years, and he also previously served in the government as a DoD Contracting Officer Representative (COR). His unique background allows him to simplify complicated topics.

The course is taught in a series of online micro-lectures that are delivered in a focused bottom-line-up-front format and provides an overview of FAR and DFARS cyber contractual requirements, NIST 800-171, and CMMC!

What is CMMC?

Cybersecurity Maturity Model Certification (CMMC) is a cybersecurity compliance and certification program which the United States Department of Defense (DoD) created that is focused on gaining assurance that its supporting contractors are implementing the 110 requirements to protect its controlled unclassified information (CUI). Nearly all DoD contractors will need to be CMMC compliant or certified to be able to do business with the DoD.

CMMC requirements will begin to appear in contracts by the 4th quarter of 2025.

What is NIST 800-171?

The majority of CMMC’s requirements are based on NIST 800-171, “Protecting CUI in Nonfederal Systems and Organizations.” Most contractors are ALREADY required to comply with NIST 800-171 per DFARS 252.204-7012, and have been required to comply since December of 2017.

Are you compliant? If not, do you know what steps you need to take?

What Companies need to be CMMC Certified?

Nearly all DoD contractors will be required to comply with CMMC in some manner. CMMC consists of 3 levels, and the requirements vary per level:

• CMMC Level 1
  • Implement 15 CMMC controls
  • Required for contracts with federal contract information (FCI)
  • Contractor is required to perform a self-assessment – no 3rd-party assessment is required
• CMMC Level 2
  • Implement 110 CMMC controls
  • Required for contracts with CUI
  • Nearly all contracts will require a 3rd-party assessment by a C3PAO resulting in CMMC certification
• CMMC Level 3
  • Implement 24 additional CMMC controls
  • Required for DoD’s most critical CUI programs
  • All contracts will require a 3rd-party assessment by DIBCAC resulting in CMMC certification

CMMC is an evolving field, and this course will be updated as changes occur. This course is being completely updated and rerecorded and the new version should be available in August 2025!

Enroll Now

Arm yourself with the knowledge you need to successfully navigate the processes of NIST 800-171 and CMMC. Don’t let your business fail because you didn’t achieve compliance or certification.

*This has been created for the DIB by a member of the DIB, and is not affiliated with the DoD, the CyberAB (also known as the CMMC Accreditation Body) or the Cybersecurity Assessor and Instructor Certification Organization (CAICO).