Due to the DFARS Interim Rule of 2020, there are some things to do before getting CMMC certified. Specifically, a self-assessment of the 110 NIST 800-171 security controls, a System Security Plan (SSP), and Plans of Action & Milestones (PoAM) for any gaps. Under DFARS, compliance with NIST 800-171 is required.
Don't understand DFARS or NIST? It's ok, we do. And, we wrote the guide on both.
If you need the policies & procedures that accompany NIST 800-171, see our NIST 800-171 Policies & Procedures Pack.
If you need the tools to satisfy the DFARS Interim Rule, see our DFARS Bundle: All-Inclusive-Toolkit.
At Compliance Armor, we’ve spent over 20 years staying on the cutting edge of industry, and keeping up with developments. We are experts in this stuff, so that you don’t have to be.