top of page

CMMC for Boards and Executive Committees

Training Course

CMMC for Boards and Executive Committees Training Course

Title: CMMC for Boards and Executive Committees

  • Modality: Virtual

  • Duration: 3.5 hours morning and afternoon options

 

Overview 

This course is designed to introduce an organization's Board of Directors, Senior Executives, and Executive Committee members to the Department of Defense (DoD) Cybersecurity Maturity Model Certification (CMMC) program. This course avoids the technical jargon and focuses on providing the appropriate level of information and guidance for the top echelon of an organization's leadership. 

 

Who Should Attend

  • Board Chairperson

  • Board Directors

  • CxOs

  • Regional, Divisional or Line of Business Senior Leadership

 

Course Agenda

  • Section 1: Training course objectives and structure

    • Introduction

    • Course Structure

  • Section 2: Current state

    • CMMC sensitive information categories

      • Federal Contract Information (FCI)

      •  Controlled Unclassified Information (CUI)

    • Drivers

      • China’s J-31 Gyrafalcoln

      • DIB surveys

      • DoD strategy

    • Legal, regulatory and policy

      • The Federal Information Security Modernization Act

      • National Institute of Standards and Technology

      • FAR and DFARS

      • 32 CFR 2002

      • DODI 5200.48

  • Section 3: CMMC framework

    • Evolution of CMMC

    • CMMC 2.0 framework

    • Rulemaking process for CMMC 2.0

    • CMMC assessments

    • CMMC compliance

      • Civil Cyber-Fraud Initiative

      • False Claims Act

  • Section 4: CMMC source documents

    • CMMC Model Overview

    • CMMC Assessment Process

    • CMMC Assessment Guide Level 1 and Level 2

    • CMMC Self-Assessment Scope Level 1 and Level 2

    • CMMC Glossary and Acronyms

    • CMMC Artifact Hashing Tool User Guide

  • Section 5: CMMC model

    • CMMC model structure

    • CMMC levels and domains

    • CMMC practices

    • CMMC level 1 practices

    • CMMC level 2 practices

  • Section 6: CMMC assessment process

    • Level 1 self-assessment

    • Level 2 C3PAO assessment

    • Level 3 DCMA DIBCAC assessment

    • Joint Surveillance Voluntary Assessment

    • CMMC assessment process

      • Phase 1: Plan and prepare the assessment

      • Phase 2: Conduct the assessment

      • Phase 3: Report recommended assessment results

      • Phase 4: Close-out POA&MS and assessment

bottom of page