CMMC Level 3: Four Lessons Learned from an Authorized C3PAO- Lesson 2

February 3, 2022 Redspin

Redspin's CISO and CMMC Registered Practioner Dr. Thomas Graham, and CMMC Provisional Assessor Tony Buenger share the second of four lessons Redspin learned while going through the CMMC Level 3 assessment process before becoming an Authorized C3PAO.

Thomas and Tony introduce "Lesson 2: Practice and Process Readiness", and chat about how having a completed SSP, responsibility matrix, and set of policies and procedures will help you in your Level 1 or Level 3 CMMC assessment. 

Subscribe to CyberSpin: Apple iTunesSpotifyStitcher, or your preferred podcast platform. New episodes are released every other week and a transcript of each episode can be found at redspin.com.

 

 

Previous Article
How GCC-High and a VDI Environment Can Help Clarify your Scope for Meeting CMMC Requirements
How GCC-High and a VDI Environment Can Help Clarify your Scope for Meeting CMMC Requirements

When preparing for a CMMC assessment, whether it be Level 1 or Level 3, we at Redspin advise organizations ...

Next Video
CMMC Level 3: Four Lessons Learned From an Authorized C3PAO - Part 1
CMMC Level 3: Four Lessons Learned From an Authorized C3PAO - Part 1

As the 1st organization to pass a CMMC Level 3 assessment, Redspin’s CISO, Thomas Graham, and CMMC Provisio...