CMMC: Latest Developments and How to Prepare

The US Department of Defense’s (DoD's) Cybersecurity Maturity Model Certification (CMMC) program is now rolling out. Other changes to the DoD’s procurement rules went into effect in December 2020 regarding NIST SP 800-171 compliance. Additional US federal agencies have also voiced support for adopting CMMC in the coming years. These changes will impact higher education institutions in many ways. Is your institution prepared? To effectively address these requirements, stakeholders from across the institution must work together, as this is not simply a technology problem. As such, information technology, security, and privacy professionals must be prepared to help their institutions start to address these requirements now. Your campus colleagues will be looking for you to provide insight, guidance, and key support. In this session, speakers will engage participants in an interactive conversation focused on two objectives. First, we will provide updates on the latest developments regarding CMMC and what that means for higher education. We will solicit specific questions from the participants, providing direct feedback to help them understand CMMC in the context of their environment. Second, we will discuss the most challenging aspects of meeting the CMMC requirements in the higher education environment. We will ask participants to brainstorm solutions to common scoping and control requirements, while providing potential solutions to these challenges.