Cybersecurity Maturity Model Certification (CMMC)

CMMC Background

The CMMC is a unified cybersecurity standard for the Defense Industrial Base that incorporates both processes and practices. These processes and practices are aligned to five maturity levels according to the type and sensitivity of the information to be protected and the associated range of threats. This dashboard looks at your cybersecurity posture from a CMMC perspective.

The CMMC was developed by the Office of the Under Secretary of Defense for Acquisition and Sustainment (OUSD(A&S)) to enhance the protection of Federal Contract Information (FCI) and Controlled Unclassified Information (CUI).

About the CMMC Model

The CMMC model is organized into 17 domains that are further divided into capabilities, practices, and processes. The Cyber Secure Dashboard makes it easy to view the organizational structure of the CMMC model and, more importantly, assess an organization’s cybersecurity policies, practices, and posture according to the CMMC standard. To access the CMMC Dashboard, click on the Dashboard status card or the Dashboard tab as shown below.

Next, click on the either the CMMC Dashboard or CMMC Standard icon to either access the CMMC Dashboard or the get an overall view of your organization’s status relative to the CMMC standard, respectively.

CMMC Dashboard

The basic structure of the CMMC dashboard is consistent with our other dashboards, namely, the cybersecurity requirements (i.e., practices) are on the left half of the dashboard and the organizational assessment is given on the right. The CMMC dashboard is organized by Domain, Capability, and Practice, which are navigable by mouse clicks. The practices that are required according the selected maturity level are displayed as active, whereas the practices that are not required, are greyed out (note however, they are still active and can be reviewed and assessed just like the active practices).

CMMC Standard View

Original CMMC Documentation