Defense contractor companies must comply.
If you are defense contractor company (either a Prime or Sub-Contractor) in the United States serving the U.S. Department of Defense (DoD) and you handle Controlled Unclassified Information (CUI), you must comply with CMMC by performing a pre-assessment, generate your System Security Plan (SSP) and pass a CMMC AB-approved C3PAO audit, if the contract will be considered a “priority”.
Requires you to “periodically assess the security controls...to determine if the controls are effective…”
Requires you to “develop and implement plans of action designed to correct deficiencies…”
Requires you to “monitor security controls on an ongoing basis to ensure the continued effectiveness of the controls.”
THE SOLUTION:
Sign up for the CyberCatch Automated Controls Testing (ACT) Solution.
Copyright © 2022 CyberCatch, Inc. All rights reserved. CyberCatch, the CyberCatch Logo, and the CyberCatch products referenced here are trademarks of CyberCatch. USPTO Patent No. 11,297,094. Other product and company names herein may be trademarks of their respective owners.