The Cybersecurity Maturity Model Certification (CMMC) 1.0 for the Defense Industrial Base (DIB) defines specific cybersecurity practices across five levels of maturity while also measuring the degree to which those practices are institutionalized within an organization. The CMMC model draws on maturity processes and cybersecurity best practices from multiple standards, including the National Institute of Standards and Technology (NIST) frameworks and references, as well as input from DIB entities and the Department of Defense. CMMC requires that DIB organizations complete an assessment of all CMMC practices at a particular level and become certified by a CMMC third-party assessment organization. When fully implemented, CMMC will require all DIB companies to achieve certification at one of the five CMMC levels, which includes both technical security practices and maturity processes. In this SEI Podcast, Andrew Hoover and Katie Stewart, architects of the CMMC model, discuss process documentation, a Level 2 requirement.
Securing the Supply Chain for the Defense Industrial Base
Building on Ghidra: Tools for Automating Reverse Engineering and Malware Analysis
Envisioning the Future of Software Engineering
Implementing the DoD's Ethical AI Principles
Walking Fast Into the Future: Evolvable Technical Reference Frameworks for Mixed-Criticality Systems
Software Engineering for Machine Learning: Characterizing and Understanding Mismatch in ML Systems
A Discussion on Automation with Watts Humphrey Award Winner Rajendra Prasad
Enabling Transition From Sustainment to Engineering Within the DoD
The Silver Thread of Cyber in the Global Supply Chain
Measuring DevSecOps: The Way Forward
Bias in AI: Impact, Challenges, and Opportunities
My Story in Computing with Rachel Dzombak
Agile Strategic Planning: Concepts and Methods for Success
Applying Scientific Methods in Cybersecurity
Zero Trust Adoption: Benefits, Applications, and Resources
Uncertainty Quantification in Machine Learning: Measuring Confidence in Predictions
11 Rules for Ensuring a Security Model with AADL and Bell–LaPadula
Benefits and Challenges of Model-Based Systems Engineering
Fostering Diversity in Software Engineering
Can DevSecOps Make Developers Happier?
Create your
podcast in
minutes
It is Free