• Online, Self-Paced
Course Description

Are you overwhelmed by CMMC? This course will save you WEEKS of research and set you up for success as you prepare for CMMC!

This course has been completely UPDATED based on the December 2023 CMMC Program proposed rule!

The course provides an overview of the FAR and DFARS cyber contractual requirements, NIST 800-171, and CMMC!

This awareness course is excellent for executives and others who need a higher-level understanding of CMMC. For practitioners who are responsible for managing CMMC compliance, we recommend our CMMC Overview Training.

This course is ideal for organizations in the Defense Industrial Base (DIB) who need to comply with CMMC, and will give you the knowledge you need to make informed decisions.

Learning Objectives

  • Types of information
    • Federal Contract Information (FCI)
    • Controlled Unclassified Information (CUI)
    • Government's CUI program
  • NIST 800-171
    • NIST 800-171
    • Artifacts such as the system security plan (SSP) and POA&M
  • Contractual Requirements
    • FAR and DFARS
    • DFARS 252.204-7012 - Safeguarding Covered Defense Information and Cyber Incident
    • DFARS 252.204-7019 - Notice of NIST SP 800-171 DoD Assessment Requirements
    • DFARS 252.204-7020 - NIST SP 800-171 DoD Assessment Requirements
    • DFARS 252.204-7021 - CMMC Requirements
  • CMMC
    • CMMC levels 1, 2, and 3
    • CMMC timeline
    • CMMC implications for Managed Services Providers (MSPs)
    • Joint Surveillance Voluntary Assessments (JSVAs)
    • Roles in the CMMC ecosystem such as the Cyber AB, CAICO, C3PAOs, RPOs, and more
    • 5-step action plan

Framework Connections

The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):

Specialty Areas

  • Risk Management
  • Cybersecurity Management
  • Program/Project Management and Acquisition
  • Executive Cyber Leadership