Syndo
Your partner for ongoing CMMC success.
We Help DoD Contractors achieve
Cybersecurity Maturity Model Certification.
CMMC
CMMC is a cybersecurity certification program required by the U.S. Department of Defense for contractors handling sensitive information, including Controlled Unclassified Information (CUI), a subset of Federal Contract Information (FCI).
It ensures they have adequate cybersecurity measures in place based on a tiered framework, with Level 1 focusing on basic safeguarding of FCI using 17 control, and Level 2 focusing on advanced safeguarding of CUI with 110 controls.
CMMC L1
Assistance
CMMC Level 1 encompasses the basic safeguarding requirements specified in Federal Acquisition Regulation (FAR) Clause 52.204-21.
Organizations can choose to perform the annual self-assessment internally or engage a third party to assist with evaluating their Level 1 compliance. Use of a third-party to assist is still considered a self-assessment and does not result in a certification.
CMMC L2
Preparation Engagement
CMMC Level 2 provides increased assurance to the DoD that a contractor can adequately protect CUI.
Organizations requiring a CMMC Level 2 certification must have an assessment conducted by CMMC Third-Party Assessment Organization (C3PAO) Certified Assessor.
A preparation engagement will ensure you are ready to pass assessment the first time.
Latest Blogs
