What is your CMMC2 Score?

CMMC2

Cybersecurity Maturity Model Certification

What is your Score?

If your first thought was what do you mean by score.?Then you should read on.?The score is put together by answering some 110 control questions.?Based upon your answers you get a score.?This score must be reported to the DOD. For example: Some control questions are.

1.????Limit System access by types of Transactions and function.???????????5 points

2.????I.D. unauthorized use of organization system.?????????????????????????????????3 Points

3.????Protect system media containing CUI both paper and digital?????????3 points

If you said yes to the three questions above, you would have 11 points.?If you said yes to the first question and no to the follow-on questions you would have a negative1.?As you can see just because you are in the cloud you are not protected you can end up with a negative score.?Question 3 for example, has nothing to do with the cloud.?They are seeking a score in the + 70 range, but you would still be required to file a POA&M report and a SSP in order to do DOD work.

?“This is a long way off” correct and not correct.?By May 2023 all DOD contracts with DFARS 252.204-7021 specified will require CMMC compliance and the inspectors are now being trained.?This requirement is for contractors and all subcontractors.??If you have experienced an OSHA inspection you have a small idea as to what to expect.?You must show you have tested your system for 3 months.?Working backward, from May, you have to be implemented by January 2023.

The good news is we have software which will give you your Score and generate your SSP, POA&M, and provide a Risk Assessment.?It is not expensive.?It will save you thousands of dollars and hours of consultants coming into your business. We would be happy to show it to you.?It was designed to help you get through an audit where all your backup documents are stored with the control questions.?The software will show you where you are weak.?The software will help you get to level one, two or three.

For more detailed information drop us a line

[email protected] or [email protected]