What Is CMMC?

The Department of Defense (DoD) is implementing a new standard called the Cybersecurity Maturity Model Certification. This standard will replace NIST 800-171 on DoD RFIs and RFPs starting in the late Fall of 2020.

To help improve security on Controlled Unclassified Information (CUI), the DoD envisions CMMC as a unified cybersecurity standard that will be consistently applied to all companies and groups that operate in the Defense Industrial Base (DIB). The goal is to eliminate the unauthorized copying or loss of information.

Learn more about CMMC and how it relates to your business.
DOD and Office of the Under Secretary of Defense for Acquisition and Sustainment - CMMC
Exostar PolicyPro Powered by ISMS Applications

Exostar PolicyPro

Simplify building and maintaining compliant security policies.

Save time and resources while you build and revise security policies in line with NIST 800-171 and CMMC directives. Exostar PolicyPro is an easy-to-use platform that helps suppliers create and customize policies to meet all 14 control family requirements within the NIST standard. It does so on a control-by-control basis.

With PolicyPro in your toolbelt, you have a comprehensive policy builder that takes you step-by-step through all the aspects of building compliant and effective policies that also are customized to your organization’s requirements.

Once your policies are in place, use PolicyPro to measure your compliance. It will evaluate and score your policy documents against model documents, taxonomies, and algorithms.

Learn more about PolicyPro
Read the Press Release