Virtual

After years of delays, the proposed Cybersecurity Maturity Model Certification (CMMC) Program Rule (32 CFR) is now expected to become a final, published rule by the end of 2024. For Defense contractors, this means that official CMMC audits can begin taking place after that. The enforcement rule for CMMC (48 CFR) is expected to become final sometime in 2025 and appear in DoD contracts in a phased approach.CMMC certification will become a prerequisite for contract award eligibility, and failure to achieve certification may result in ineligibility to bid and win contract awards. To achieve CMMC Level 2 certification (expected to be the most common), DoD contractors must both implement controls and requirements across their in-office systems, and require their cloud service providers that handle sensitive CUI to demonstrate FedRAMP Moderate equivalence.In this 60-minute informational session, Deltek’s Michael Greenman will provide the latest updates on the CMMC program and discuss how Deltek is supporting CMMC compliance efforts as a Cloud Service Provider to streamline your compliance journey.Topics to be covered during this webinar will include:

A program update/refresher on CMMC 2.0 and the latest timeline expectations

Requirements of Cloud Service Providers and the risks with strategies to mitigate them

The concept of Shared Responsibility with Cloud Service Providers (CSPs)

How Costpoint GCCM’s FedRAMP Moderate Ready status supports CMMC compliance efforts