CMMC Bundle 1: Level 1 (CMMC 2.0 L1 & FAR 52.204-21)

CMMC 2.0 Level 1 - CMMC 2.0 L1 & FAR 52.204-21 Policies, Standards & Procedures -  CMMC Level 1   (20% discount)

This bundle is as streamlined as we've been able to make it for those needing to demonstrate compliance with Cybersecurity Maturity Model Certification (CMMC) Level 1. If you need to address CUI requirements, then the NIST 800-171 Compliance Program (NCP) is the most appropriate solution for your needs.

The CMMC Level 1 Bundle includes two (2) ComplianceForge products:

1. CMMC Level 1 Policies & Standards
2. CMMC Level 1 Procedures

The CMMC 2.0 Level 1 & FAR 52.204-21 Policies, Standards & Procedures bundle is narrowly tailored for CMMC Level 1 organizations. 

FAR 52.204-21 + CMMC Level 1 

FAR 52.204-21 cybersecurity requirements form the basis for what CMMC Level 1 practices. While FAR 52.204-21 has 15 requirements, CMMC Level 1 adds 2 additional requirements. The CMMC Bundle #1 contains coverage for both FAR 52.204-21 and CMMC 2.0 Level 1 requirements.

Why Are These Products Part of The Bundle?

This bundle is designed for organizations that need a cost-effective and timely solution to demonstrate compliance with CMMC Level 1. Our solutions is a customizable, easily-implemented set of documentation that your company needs to demonstrate compliance with CMMC 2.0 L1 & FAR 52.204-21 requirements. Being Microsoft Word documents, you have the ability to make edits, as needed. 

Please note that if you want a customized bundle, we are happy to create one for you. Just contact us with your needs and we will generate a quote for you.

Products Included in CMMC Bundle #1: 

CMMC 2.0 L1 & FAR 52.204-21 Policies & Standards These policies & standards are in an editable Microsoft Word format. Content is specific to CMMC 2.0 L1 & FAR 52.204-21 requirements. Under each of the policies are standards that support those policy statements. Includes many useful supplemental documentation templates: Data classification & handling guidelines Data retention guidelines Rules of behavior (acceptable use) Bring Your Own Device (BYOD) usage guidelines and more templates

CMMC 2.0 L1 & FAR 52.204-21 Procedures  These procedures are in an editable Microsoft Word document. The structure of the procedures make it easy to map to the corresponding policies and standards. This is an expectation that companies have to demonstrate how cybersecurity controls are actually implemented.  Given the difficult nature of writing templated procedure statements, we aimed for approximately a "80% solution" since it is impossible write a 100% complete cookie cutter procedure statement that can be equally applied across multiple organizations. What this means is ComplianceForge did the heavy lifting and you just need to fine-tune the procedure with the specifics that only you would know to make it applicable to your organization. The CSOP is mapped to leading frameworks to help with mapping compliance requirements.

Optional Professional Services (Add On)

ComplianceForge offers optional professional services to customize purchased documentation. Professional services are not required to customize ComplianceForge documentation. However, some clients want our subject matter expertise to help customize their documentation to meet their specific business needs. If you have any questions about our professional services, please contact us at: www.complianceforge.com/contact-us/.

We offer our professional services in bundles of: five (5), ten (10) & twenty (20) hours.

Purchased professional service hours will expire after 120 days (4 months) from the time of purchase before they expire.