Go to kintent.com

Docy Child

Updated on March 16, 2023

CMMC FAQ

Estimated reading: 1 minute 743 views
  1. Self-attest L1  start with a CMMC L1 for the basic set of requirements from CMMC. Level 1 protects Federal Contract Information (FCI)
  2. Mature with Level 2 if you handle CUI add policies and procedures and a few controls

Each CMMC level is built on the one below it, so compliance with the lower-level requirements and the use of additional processes is needed to implement the cyber security-based practices.

Level 1: This is the most “basic cybersecurity practices” such as using antivirus software and ensuring employees change their passwords regularly. This should be done to protect Federal Contract Information (FCI).

Level 2: This is likely to be the level that most contractors fall into. Level 2 is an intermediate level between Level 1 and Level 3 and consists of good cyber hygiene. This level must be completed if the organization holds CUI (Controlled Unclassified Information) on their network. .

Level 3: Tt the expert level, the organization demonstrate effectiveness of the level 1 and level 2 practices.

CMMC Overview and Guides - Previous How to get started with CMMC Next - CMMC Overview and Guides CMMC program Audit Checklist

Join the conversation

ON THIS PAGE
SUBSCRIBE
FlightSchool
SHARE THIS ARTICLE
Twitter Facebook LinkedIn

FlightSchool is the fun way to learn about compliance, trust, and TrustCloud’s products.

© 2023 TrustCloud Corporation. All rights reserved.
TrustOps® is a registered trademark of TrustCloud Corporation.

FlightSchool RSS Feed

TOPICS

Platform

ABOUT US

AICPA
Monitored by TrustCloud

❤️  Joyfully crafted by a 100% distributed team.