The CMMC is being implemented by the United States Department of Defense (US DoD) to protect the intellectual property it has invested in from cyber-attacks. The CMMC programme will impact the global Defence Industrial Base (DIB) and the 300,000 companies within it. Who will be required to be assessed for their compliance to the NIST SP 800 – 171 cyber security framework, currently defined under DFARS 252.204-7012. Whilst the requirement for safeguarding covered defence information is not a new one, CMMC will add a requirement for DIB prime contractors and their subcontracts to be CMMC certified to an appropriate level of cyber maturity, before they can undertake new contracts.
This platform has been created to support users understand the requirements for CMMC compliance. Provide the appropriate guidance and support for organisations to comply with cyber security requirements outlined by the CMMC framework and the broader deployment of cyber risk management solutions.