Blog - Page 5 - ComplianceForge

When is a conformity assessment not a conformity assessment? (hint – it is CMMC)

Posted by Guest Author - Tom Cornelius on Aug 14th 2020

This episode of Coffee Thoughts With Tom addresses CMMC as a conformity assessment, since conformity assessments are intended to use a risk-based approach to determine a confidence point (e.g., materi … read more

Is CMMC really a "maturity model" or just a controls catalog with 5 control sets?

Posted by Guest Authors - Tom Cornelius & Asfand “Ozzie” Saeed on Aug 3rd 2020

This article is about words having meaning, since the basis of Governance, Risk Management and Compliance (GRC) efforts is to identify and govern both technical and non-technical requirements that … read more

CMMC Mind Map - Identifying Stakeholders & Requirements

Posted by ComplianceForge on Jul 20th 2020

Have you ever wondered how the various pieces of CMMC come together and what those interactions are? We decided it would be worthwhile to create a mind map for those grappling CMMC compliance … read more

Practical Steps To Prepare For A Successful CMMC Assessment

Posted by Guest Authors - Tom Cornelius & Les Terrell on Jul 6th 2020

ComplianceForge and DTC Global teamed up to write an article that provides practitioner-level guidance on Cybersecurity Maturity Model Certification (CMMC) that is focused on the practical steps it … read more

A Cybersecurity Practitioner's Thoughts On Conflicting CMMC Guidance

Posted by ComplianceForge on Jul 2nd 2020

The intent of this article is to generate a professional discussion on CMMC that will make its way to the DoD PMO to hopefully remediate several issues in future releases of that standard. This art … read more