Term · 14. International Standards
CMMC (Cybersecurity Maturity Model Certification) CMMC
Definition
US Department of Defense framework certifying cybersecurity practices of Defense Industrial Base (DIB) contractors handling Federal Contract Information (FCI) and Controlled Unclassified Information (CUI). CMMC 2.0 (2021) consolidated to 3 levels: Foundational (Level 1, basic safeguarding), Advanced (Level 2, NIST SP 800-171 compliance), Expert (Level 3, NIST SP 800-172 enhanced requirements). Phased rollout in DoD contracts from 2025.
- Synonyms
-
- CMMC 2.0
- Application
- Mandatory for DoD prime contractors and subcontractors handling FCI/CUI. IDM/IAM impact: MFA on all systems processing CUI, strict identity proofing (NIST SP 800-63 IAL2/AAL2 or higher), privileged access management, session monitoring for CUI access, identity federation aligned to FICAM.
- Sources
-
- DoD CIO — CMMC Program primary source
Related terms
-
CSA CCoP (Cybersecurity Code of Practice for CII, Singapore) (CSA CCoP)
Singapore Cyber Security Agency's mandatory Code of Practice for Critical Information Infrastructure (CII) operators acr …
-
MAS TRM (Monetary Authority of Singapore — Technology Risk Management Guidelines) (MAS TRM)
Singapore central bank's prescriptive guidelines (revised 2021) for technology risk management at financial institutions …
-
FedRAMP (Federal Risk and Authorization Management Program) (FedRAMP)
US government program standardising security assessment and authorization of cloud services used by federal agencies. Th …
-
ENISA (European Union Agency for Cybersecurity) (ENISA)
EU agency providing cybersecurity guidance, threat intelligence, and certification schemes across member states. Coordin …
-
EU CRA (Cyber Resilience Act) (CRA)
EU regulation (Regulation (EU) 2024/2847; in force 10 Dec 2024) imposing cybersecurity requirements on products with dig …
-
GLBA (Gramm-Leach-Bliley Act) (GLBA)
US federal law (1999) requiring financial institutions to safeguard customer information and disclose information-sharin …