This interactive lesson introduces the CMMC as a maturity model. As an organization matures and develops enhanced capabilities, it develops formally defined steps and documents its practices to establish standardization and consistency. The Cybersecurity Maturity Model Certification (CMMC) was developed to assess the maturity level of the cybersecurity programs of U.S. Department of Defense vendors and contractors. This lesson describes the five maturity levels in the model, and explains which practices and processes must be established for an organization to be certified at each maturity level.

This project was funded by the National Science Foundation grant #1500375.

All Interactive Lessons