The Cybersecurity Maturity Model Certification Model v1 was released by the DoD on January 31, 2020. But the DoD has not yet finalized all aspects of the documentation requirements for compliance, so there is no enforcement action thus far.
But it is coming. And CyberConfirm will be ready to help its customers create the required documentation with plenty of advance prep time.
CMMC will encompass several maturity levels, from “Basic Cybersecurity Hygiene” to “Advanced/Progressive”. The DoD’s intent is to incorporate CMMC into the Defense Federal Acquisition Regulation Supplement (DFARS) and use it as a requirement for the awarding of federal government contracts.
Currently, CyberConfirm provides software covering the documentation requirements for NIST 800-171. We do not have a scheduled date for additional updates at this time.