Follow the CUI: Setting the Boundaries for Your CMMC Assessment 1.0 (CMMC 1.0)

September 16, 2020 • Webcast

By

Matthew Trevors and Gavin Jurecko

In this webcast, Model Architects Gavin Jurecko and Matt Trevors reviewed several steps for identifying CUI exposure in terms of their critical services and the assets that support them.

Publisher

Software Engineering Institute

Topic or Tag

Watch

Abstract

One of the primary drivers of the Department of Defense (DoD) Cybersecurity Maturity Model Certification (CMMC) is the congressional mandate to reduce the risk of accidental disclosure of controlled unclassified information (CUI). However, a full CMMC assessment can seem daunting to organizations in the Defense Industrial Base (DIB), and many might not know where to start. In this webcast, Model Architects Gavin Jurecko and Matt Trevors reviewed several steps for identifying CUI exposure in terms of their critical services and the assets that support them. This approach can help DIB organizations properly scope a CMMC assessment and contain the costs of protecting CUI.

About the Speaker

Matthew Trevors

Matthew Trevors is an SEI alumni employee.

Gavin Jurecko

Gavin Jurecko is an SEI alumni employee.

Gavin Jurecko leads the Resilience Diagnostics Team within the SEI's CERT Division. Jurecko has 10 years of experience in cybersecurity and communications systems engineering. Before joining the SEI, he was an engineer at Westinghouse Electric Company developing and implementing cybersecurity programs to protect …

Software Engineering Institute