Cyber Security Maturity Model

CMMC is a cybersecurity framework and maturity model

• Combination of maturity processes + cybersecurity best practices
• Co-developed by DOD and industry
• Primarily combines FARS -21 & DFARS 7012
• Additional practices defined by DOD and Industry
• CMMC is broken into 5 maturity Levels, spanning 17 domains (originating from FIPS) and 171 practices
• CMMC-AB is the governing body Formal Assessments Required