CMMC Requirement AC.L1-B.1.III – External Connections: Verify and control/limit connections to and use of external information systems. Links to Publicly Available Resources CMMC Level 1 Self-Assessment Guide This document provides self-assessment guidance for...
CMMC Requirement AC.L1-B.1.II – Transaction & Function Control: Limit information system access to the types of transactions and functions that authorized users are permitted to execute. Links to Publicly Available Resources CMMC Level 1 Self-Assessment...
CMMC Requirement AC.L1-B.1.I – Authorized Access Control: Limit information system access to authorized users, processes acting on behalf of authorized users, or devices (including other information systems). Links to Publicly Available Resources CMMC Level 1...
Cybersecurity Compliance and Risk Assessment Purpose: Introduces the concept of a common Cybersecurity Compliance and Risk Assessment (CCRA) for the Defense Industrial Base CCRA Announcement Letter The CCRA concept allows suppliers to complete ONE assessment which...
The intent of the Defense Industrial Base (DIB) Sector Coordinating Council (SCC) Supply Chain Cyber training is to build awareness for DIB suppliers of the Cybersecurity Maturity Model Certification (CMMC) requirements and their obligation to meet FAR 52.204-21,...
AC AT AU CM IA IR MA MP PS PE RA CA SC SI Risk Assessment (RA) All Level 1 Level 2 Level 3 RA.L2-3.11.1 Risk AssessmentsRA.L2-3.11.2 Vulnerability ScanRA.L2-3.11.3 Vulnerability RemediationRA.L3-3.11.1E Threat-Informed Risk AssessmentRA.L3-3.11.2E Threat...
