The Cybersecurity Maturity Model Certification (CMMC) 1.0 for the Defense Industrial Base (DIB) defines specific cybersecurity practices across five levels of maturity while also measuring the degree to which those practices are institutionalized within an organization. The CMMC model draws on maturity processes and cybersecurity best practices from multiple standards, including the National Institute of Standards and Technology (NIST) frameworks and references, as well as input from DIB entities and the Department of Defense. CMMC requires that DIB organizations complete an assessment of all CMMC practices at a particular level and become certified by a CMMC third-party assessment organization. When fully implemented, CMMC will require all DIB companies to achieve certification at one of the five CMMC levels, which includes both technical security practices and maturity processes. In this SEI Podcast, Andrew Hoover and Katie Stewart, architects of the CMMC model, discuss process documentation, a Level 2 requirement.
Optimizing Process Maturity in CMMC Level 5
Reviewing and Measuring Activities for Effectiveness in CMMC Level 4
Situational Awareness for Cybersecurity: Beyond the Network
Quantum Computing: The Quantum Advantage
CMMC Scoring 101
Developing an Effective CMMC Policy
The Future of Cyber: Educating the Cybersecurity Workforce
Agile Cybersecurity
CMMC Levels 1-3: Going Beyond NIST SP-171
The Future of Cyber: Secure Coding
Challenges to Implementing DevOps in Highly Regulated Environments
The Future of Cyber: Cybercrime
An Ethical AI Framework
My Story in Computing: Madison Quinn Oliver
The CERT Guide to Coordinated Vulnerability Disclosure
Women in Software and Cybersecurity: Dr. April Galyardt
The Future of Cyber: Security and Privacy
The Future of Cyber: Security and Resilience
Reverse Engineering Object-Oriented Code with Ghidra and New Pharos Tools
Create your
podcast in
minutes
It is Free