MP.L2-3.8.4 Media Markings

This document provides assessment guidance for conducting Cybersecurity Maturity Model Certification (CMMC) assessments for Level 2.

Crowdstrike webpage providing security tips and resources for considerations on least privilege.

The DCSA CUI Program Office is dedicated to providing up-to-date information, tools, and resources to support Industry's implementation of CUI programs. This Defense Counterintelligence and Security Agency (DCSA) Controlled Unclassified Information (CUI) webpage is routinely updated with news and information related to DCSA’s CUI oversight responsibilities.

In accordance with the authority in DoD Directive (DoDD) 5143.01 and the December 22, 2010 Deputy Secretary of Defense Memorandum, this issuance: •Establishes policy, assigns responsibilities, and prescribes procedures for CUI throughout the DoD in accordance with Executive Order (E.O.) 13556; Part 2002 of Title 32, Code of Federal Regulations (CFR); and Defense Federal Acquisition Regulation Supplement (DFARS) Sections 252.204-7008 and 252.204-7012. •Establishes the official DoD CUI Registry.

This handbook provides examples of correctly marking Controlled Unclassified Information (CUI).

This link from the National Archives provides additional resources to assist with marking CUI.

This link from the National Archives provides training videos for marking CUI.

This blog provides examples of correctly marking Controlled Unclassified Information (CUI) and forms for purchase.

This article breaks down CMMC Section 3.8, which focuses on the media protection for media that contains controlled unclassified information (CUI)

This GSA-IT Security MP Procedurals reference provides guidance for the MP security controls identified in NIST SP 800-53 and federal contractor media protection requirements.