Cybersecurity Maturity Model Certification 1.0 (CMMC 1.0)
• Collection
Publisher
Software Engineering Institute
Abstract
The DIB is the network of more than 200,000 businesses, organizations, and universities that research, engineer, develop, acquire, design, produce, deliver, sustain, and operate military weapons systems. The DIB is under constant threat of cyber warfare activities by cybercriminals and state-sponsored actors. To help prevent losses of intellectual property and CUI, SEI researchers helped the federal government develop CMMC, a program built upon established cybersecurity standards and best practices to reduce the risk of cyber threats in the DIB.
Collection Items

Overview of Practices and Processes of the CMMC 1.0 Assessment Guides (CMMC 1.0)
• White Paper
By Douglas Gardner
This document is intended to help anyone unfamiliar with cybersecurity standards get started with the Department of Defense (DoD) Cybersecurity Maturity Model Certification (CMMC).
Read
The CMMC Level 1 Assessment Guide: A Closer Look
• Podcast
By Katie C. Stewart, Andrew F. Hoover
Andrew Hoover and Katie Stewart, architects of the CMMC 1.0 model, discuss the Level 1 Assessment Guide for the CMMC.
Listen
The CMMC Level 3 Assessment Guide: A Closer Look
• Podcast
By Andrew F. Hoover, Katie C. Stewart
Andrew Hoover and Katie Stewart, architects of the CMMC 1.0 model, discuss the Level 3 Assessment Guide for the CMMC and how it differs from the Level 1 Assessment Guide.
Listen
An Introduction to CMMC Assessment Guides
• Podcast
By Katie C. Stewart, Andrew F. Hoover
In this SEI Podcast, Andrew Hoover and Katie Stewart, architects of the CMMC 1.0 model, discuss the CMMC assessment guides, how they were developed, and how they can be used.
Listen
Optimizing Process Maturity in CMMC Level 5
• Podcast
By Katie C. Stewart, Andrew F. Hoover
Andrew Hoover and Katie Stewart, architects of the CMMC 1.0 model, discuss the Level 5 process maturity requirements, which are standardizing and optimizing a documented approach for CMMC.
Listen
Reviewing and Measuring Activities for Effectiveness in CMMC Level 4
• Podcast
By Andrew F. Hoover, Katie C. Stewart
Andrew Hoover and Katie Stewart, architects of the CMMC model, discuss reviewing and communicating CMMC activities and measuring those activities for effectiveness, which are requirements of Level 4 of the …
Listen
CMMC Levels 1-3: Going Beyond NIST SP-171
• Podcast
By Katie C. Stewart, Andrew F. Hoover
Andrew Hoover and Katie Stewart, CMMC architects, discuss Levels 1-3 of the model and what steps organizations need to take to move beyond NIST 800-171.
Listen
Documenting Process for CMMC
• Podcast
By Katie C. Stewart, Andrew F. Hoover
Andrew Hoover and Katie Stewart, architects of the Cybersecurity Maturity Model Certification (CMMC) 1.0, discuss process documentation, a Level 2 requirement.
Listen
Developing an Effective CMMC Policy
• Podcast
By Andrew F. Hoover, Katie C. Stewart
Andrew Hoover and Katie Stewart, architects of the Cybersecurity Maturity Model Certification (CMMC) 1.0, present guidelines for developing an effective CMMC policy.
Listen
CMMC Scoring 101
• Podcast
By Katie C. Stewart, Andrew F. Hoover
Andrew Hoover and Katie Stewart, architects of the Cybersecurity Maturity Model Certification (CMMC) 1.0, discuss how assessed DIB organizations are scored according to the model.
Listen
CMMC Scoring Fact Sheet 1.0 (CMMC 1.0)
• Fact Sheet
By Software Engineering Institute
This document explains the concept of CMMC assessment level scoring.
Learn More
Hitting the Ground Running: Reviewing the 17 CMMC Level 1.O Practices (CMMC 1.0)
• Webcast
By Matthew Trevors, Gavin Jurecko
In this webcast, CMMC Architects, Gavin Jurecko, and Matt Trevors provide insight on how to evaluate and assess your organization's readiness for meeting the practice requirements of CMMC Level 1.
Watch
CMMC—Securing the DIB Supply Chain with the Cybersecurity Maturity Model Certification Process 1.0 (CMMC 1.0)
• Fact Sheet
By Software Engineering Institute
This document explains the concept of process maturity, how it applies to cybersecurity, and the steps an organization can take to navigate the five CMMC levels of process maturity.
Learn More
Follow the CUI: Setting the Boundaries for Your CMMC Assessment 1.0 (CMMC 1.0)
• Webcast
By Matthew Trevors, Gavin Jurecko
In this webcast, Model Architects Gavin Jurecko and Matt Trevors reviewed several steps for identifying CUI exposure in terms of their critical services and the assets that support them.
Watch
The DoD’s Cybersecurity Maturity Model Certification and Process Maturity 1.0 (CMMC 1.0)
• Webcast
By Katie C. Stewart, Andrew F. Hoover
This webcast provides insight into how organizations can prepare for CMMC.
Watch
INtersect: Cybersecurity Maturity Model Certification | Role of the Cybersecurity Engineer 1.0 (CMMC 1.0)
• Video
By Software Engineering Institute
Matthew Butkovic interviews Matt Trevors on the new Cybersecurity Maturity Model Certification, or CMMC.
Watch
2019 SEI Year in Review
• Annual Report
By Software Engineering Institute
The 2019 SEI Year in Review highlights the work of the institute undertaken during the fiscal year spanning October 1, 2018, to September 30, 2019.
Read