CMMC Compliance Training
Training for DoD Contractors
These courses are the beginning of establishing a Cybersecurity Maturity Model Certification (CMMC) pathway to achieve your desired level of cybersecurity maturity and succeed as a DoD contractor or subcontractor.
There is no cost for Washington State businesses currently in the Defense Supply Chain or those that are interested in supplying defense agencies (directly or in the supply chain).*
Vendors outside of Washington State can sign-up for the suite of CMMC courses at a cost of $125.
*Course fees are covered thanks to a generous DoD OEA grant awarded to Impact Washington through the Washington State Department of Commerce.
Ongoing Impact Washington Cybersecurity Compliance Support
Available Training Courses
- Module 1: Introduction
- Backgound History and why was it developed
- What is Cybersecurity?
- What is CMMC and DFARS?
- Module 2: CMMC Business Impact
- Protecting your prime relations and direct contracts – How can it impact your business?
- Tier 2, 3 & 4 Suppliers Requirements
- Mobilizing your workforce to manage CMMC
- Module 3: Procurement Rules
- DFARS Rules – How do you collect money & what does it cost?
- Allowable Costs & Indirect Cost of CMMC
- Getting Reimbursement for CMMC
- Module 4: Next Steps
- Starting Point – How do you set up a security program?
- Critical Resources
- Companion Courses
As a CMMC practitioner, you will learn the basics and fundaments of requirements packed inside of this emerging certification. The practitioner course facilitates and identifies the steps needed to move the company toward DFARS and CMMC compliance using NIST 800-171 guidance. (Approximate 45-60 minute course)
- CMMC Session 1: Introduction
- Introduction: Backgound History. What is the Cybersecurity Maturity Model Certification (CMMC)?
- Framework Overview: What are the different Core Elements? What is the CMMC structure?
- Key Terminology: Controlled Unclassified Information (CUI) & Federal Contract Information (FCI)
- Spot Quiz
- CMMC Session 2: CMMC Domains and Capabilities
- Individual topic descriptions for all Domains
- Spot Quiz
- CMMC Session 3: Levels, Process Maturity, Cerification and Assessments
- CMMC Levels: Introduction to the CMMC Levels. Description of the Individual Levels (including Practices and Processes associated with each level)
- CMMC Process Maturity: CMMC Process Maturity Introduction. Descriptions of the Maturity Levels
- CMMC Certification Information: FAQs
- Assessments: FAQs and CMMC Assessment Roadmap
- Spot Quiz
- CMMC Assessment
- Summary: Overview and Key points from the course
- Assessment Questions: Quiz about the course sessions
What You Will Learn
- What is cybersecurity and why does it matter to you as a DoD contractor
- Understand the requirements of the CMMC standard and DFARS/NIST 800-171
- Implications of CMMC and contract flow-down requirements
- What is a System Security Plan (SSP)
- What is a Plan of Action and Milestones (POA&M)
- How an SSP is your plan for cybersecurity
- What are risks, controls, incidents, and how to identify gaps in your program
- Easier ways to manage your CMMC compliance