🛡

CMMC 2.0 Training Portal

Cybersecurity Maturity Model Certification — Level 2 Instructor & Student Reference

NIST SP 800-171 Rev 2  |  110 Practices  |  14 Domains  |  DFARS 252.204-7012/7019/7020/7021

🏛 14 CMMC Domains 📋 110 Level 2 Practices 📂 9 Audit Document Types 🏭 80K+ DIB Companies 🎓 8 Training Case Studies

🌐 CMMC Ecosystem

🌐
CMMC Ecosystem
Explore the comprehensive CMMC ecosystem including stakeholders, processes, and relationships within the cybersecurity certification framework.
START HERE
→ Explore Ecosystem
🔒
Introduction to FCI & CUI
Learn about Federal Contract Information (FCI) and Controlled Unclassified Information (CUI) classification, handling, and protection requirements.
FOUNDATIONS
→ Learn FCI & CUI
📋
CMMC & NIST SP 800-171 Framework
Comprehensive guide to understanding the relationship between CMMC levels and NIST SP 800-171 security control requirements and implementation.
FRAMEWORK
→ View Framework
👥
Cybersecurity Data Management Roles
Define and manage user roles, responsibilities, and access controls for cybersecurity data management within your organization.
GOVERNANCE
→ View Roles
📁
CMMC Audit Evidence Guide
Guidance and templates for collecting, organizing, and presenting evidence required for CMMC assessment and audit processes.
AUDIT PREP
→ View Evidence Guide
CMMC Applicability Checklist Tools
Comprehensive checklist tools to determine which CMMC and NIST SP 800-171 security requirements apply to your organization and systems.
TOOLS
→ Open Checklist
📊
CMMC Auditor Progress Dashboard
Real-time dashboard displaying audit progress, compliance status, findings, and overall certification readiness metrics.
DASHBOARD
→ Open Dashboard

📋 Certification Process

📋
DoD Contractor CMMC Certification Process
A comprehensive, interactive step-by-step guide covering the complete CMMC certification journey for all three levels. Walks DoD contractors chronologically through achieving Level 1 (FCI annual self-assessment against 15 FAR 52.204-21 requirements), Level 2 (CUI — self-assessment or C3PAO third-party certification against 110 NIST SP 800-171 controls), and Level 3 (DIBCAC government-led assessment against 24 enhanced NIST SP 800-172 requirements). Features a dedicated DIBCAC assessment walkthrough, required documents matrix, and clickable master audit checklist with real-time progress tracking.
⚖ FAR 52.204-21 🔐 NIST SP 800-171 🎯 NIST SP 800-172 🏛 DIBCAC Assessment ✅ Audit Checklist 📁 Required Documents 🏆 All 3 Levels
View Certification Guide →

🎓 Case Studies

🎓
CMMC Level 2 Training Case Studies
Eight sector-specific fictional DoD contractors built for hands-on CMMC Level 2 training exercises. Each case study provides a complete organizational profile, IT environment inventory, network architecture, CUI data flows, security control gaps, third-party risk exposure, and a CMMC domain assessment — giving students realistic data to practice SSP review, gap analysis, POA&M development, and audit document preparation.
🏭 Defense Manufacturing 💻 IT Services ✈ Aerospace 🔬 Research 📦 Logistics 🖥 Embedded Systems 📋 Consulting 🧬 BioDefense
View Case Studies →

📁 Required CMMC Tools & Documents

📄
Required CMMC Tools & Documents
Access all required documentation, policies, procedures, and reports necessary for CMMC compliance and certification readiness.
📋 Policies & Procedures 🗂 SSP Templates 📊 POA&M Frameworks 🔍 Assessment Reports ✅ Compliance Checklists 📁 Audit Documentation
View All Documents →