search menu icon-carat-right cmu-wordmark

CMMC—Securing the DIB Supply Chain with the Cybersecurity Maturity Model Certification Process 1.0 (CMMC 1.0)

Fact Sheet
This document explains the concept of process maturity, how it applies to cybersecurity, and the steps an organization can take to navigate the five CMMC levels of process maturity.

Software Engineering Institute


Process maturity represents an organization’s ability to institutionalize, or embed, its processes. Measuring cybersecurity process maturity indicates how well a company has ingrained practices and processes in the way it defines, executes, and manages work. This improves an organization's ability to both prevent and respond to a cyberattack.