March 31, 2020
Cybersecurity Maturity Model Certification - Bryan Graf, Abacode
In light of the current Corona virus safety measures, this month's SOUG meeting will be held virtually via Microsoft Teams. This will be a first trial run, so join us and let me know what you think.
Click HERE to join the meeting, or dial in via +1-727-308-3963 Conf ID: 996-241-01#
The Cybersecurity Maturity Model Certification (CMMC) is the Department of Defense's (DoD) newest vendor certification program designed to ensure that cybersecurity controls and processes adequately protect Controlled Unclassified Information (CUI) that resides on Defense Industrial Base (DIB) systems and networks. When fully operational, the CMMC will be mandatory for all entities doing business with the DoD at any level.
This month, Abacode's SVP, Brian Graf, will be joining us to review the following aspects of CMMC:
- What is cmmc?
- Who is required to comply?
- NIST 800-53 / 171 controls overview
He will also introduce components in the CMMC compliance roadmap, including:
Bryan will close with a discussion of fees related to CMMC, timelines, and required technologies for certification.
- Assess - risk assessment, vulnerability assessment
- Design - policy, procedure, IR / BCDR plans
- Implement - training, secure configuration, monitoring, internal audit
- Monitor - continuous compliance and security control validation
For information on usual meeting locations and times as well as previous
meeting minutes and presentations please refer to the
For further information or enquiries regarding meetings please
contact the SOUG meeting coordinator.