DOD releases self-assessment guide for CMMC level one compliance

By Sara Friedman / December 15, 2021 at 9:51 AM
The Defense Department has published a revised guide for level one of its Cybersecurity Maturity Model Certification program, detailing practices companies must achieve to reach compliance through conducting a self-assessment of their security measures. The level one self-assessment guide reflects changes made to the program in CMMC 2.0. Under the revamp, the Pentagon eliminated the third-party assessment requirement for level one and will require companies to self-attest annually. Level one is focused on the protection of federal contracting information and...

Not a subscriber? Sign up for 30 days free access to exclusive, behind-the-scenes reporting on defense policy and procurement.

Log in to access this content.