CMMC Auditor / CMMC Certification

CMMC Compliance

The DoD requires that contractors receive a CMMC audit. Following, you’ll need a CMMC certification from a third party CMMC auditor. In short, any DoD contractor must be CMMC certified.

Technology Seed has an in-house CyberSecurity Team. And, if you need to prepare for CMMC compliance, we can help.

The Cybersecurity Maturity Model is complex. But, we can make it easy. So, when you start the process, you’ll find the requirements are just best practices. And, they are designed to protect your company. Of course, we can walk you through the steps. Likewise, if you are just starting, and want to talk about the process, we’re here for you!

The following information from the DoD may be useful:

What is Cybersecurity Maturity Model Certification?

The Cybersecurity Maturity Model Certification certifies companies wanting to do business with the DoD. The goal is increasing levels of cybersecurity compliance.

What level is required for various contracts?

The government assigns the required level. And, different contracts will have different level assigned.

We expect the following levels:

  1. Basic
  2. Intermediate
  3. Good
  4. Proactive
  5. Advanced / Progressive

CMMC Level Map

Why create the CMMC Compliance Requirement?

The government is looking to assess and increase the cybersecurity posture of businesses working on DoD contracts.

Is the CMMC currently a requirement?

The CMMC was published 01/2020. Following, contracts will begin using the new requirement in June 2020.

Do subcontractors on contracts need to be certified?

Yes.

Is CMMC different than NIST SP 800-171?

Yes! CMMC contains many tiers of security. Also, it requires verification.

How can my business become certified?

Your company can work with a 3rd party certification provider, like Technology Seed. First, we can identify which compliance levels apply. Then, we can work with you to help you meet those requirements. Further, we can provide the 3rd party verification required by the DoD.

Will my company need to be reassessed yearly?

There likely will be a recurring requirement. However, no info has been published yet.

Is CMMC part of NIST SP 800-171?

First, the DoD is merging various security standards into a single standard. Ultimately, CMMC will take the place of several standards, including NIST 800-171.

Are You Preparing for CMMC Compliance?

Contact Technology Seed for CMMC Audit Compliance in NH, MA, or anywhere in the USA.

603-458-7190 / cmmc@tseed.com

Or, submit this form:

CMMC Certification Inquiry