Helping organizations with CMMC requirements
The Cybersecurity Maturity Model Certification (CMMC) is the unified standard for implementing cybersecurity across the Defense Industrial Base (DiB). It is intended to help reduce the risk of compromise of the sensitive data that exists within the supply chain.
What is the CMMC?
The CMMC framework is a collection of processes, other frameworks, and inputs from existing cybersecurity standards such as NIST, FAR, and DFARS. This program was announced in January 2020. It was designed to help defense contractors certify cyber readiness.
Who is impacted by CMMC?
Organizations Seeking Compliance (OSC) in the DiB including prime and subprime contractors. CMMC requires OSCs to prove to a Cyber AB C3PAO that their IT environment is secure, and is documented as secure, in order to handle and process contract data (FCI, CUI).
What are the consequences of not being CMMC compliant?Consequences can include contract ineligibility, loss of contracts, reputational damage, and legal and financial implications.
The Tego Approach
Tego is a CMMC Registered Practitioner Organization (RPO) with certifications up to and including Registered Practitioner Advanced (RPA). Our team has several years’ experience in the security, audit, and compliance space and maintain training in the CMMC Assessment Process (CAP). Tego can help OSCs in the following ways:
- Scope Controlled Unclassified Information (CUI) in the OSC environment
- Assess organization’s controls against all CMMC/NIST 800-171 domains and objectives
- Identify and prioritize gaps
- Develop Plans of Action and Milestone (POA&Ms)
- Provide ongoing consulting to address POA&Ms
- Reevaluate Supplier Performance Risk System (SPRS) score
- Comprehensive follow-up assessment/certification stress test
Contact us today to schedule an introductory call.
Licensed Training Provider
If you are interested in having an internal CMMC Certified Professional (CCP) or CMMC Certified Assessor (CCA) maintain your hard-earned compliance, the staff must obtain their certifications through rigorous instruction provided by Licensed Training Providers (LTP). LTPs deliver certified classes aligned with CAICO Approved Training Material (CATM) and taught or facilitated by CAICO Certified Instructors (CCI).
Due to the expertise required to become a LTP, it is optimal for an OSC to use our LTP teaming partner to conduct CMMC specific training for operational staff required to maintain the controls required for successful CMMC certification. CCP/CCA Training is based on a price per student. Class sizes of less than five will require custom pricing. CMMC role training varies by job responsibility, content and class size.