Get the Beginner’s Guide to the GSA Schedule

  • About
      • Providing full-service assistance to help businesses obtain and manage a GSA Schedule Contract Explore to learn more.
      • Our Team
      • Our Founder
      • Community Impact
      • Careers
      • Clients
      • Download the Beginner’s Guide
  • Get a GSA Schedule
      • Businesses, non-profits and educational institutions can obtain a GSA Schedule Contract to sell products and services to government customers. We'll help you navigate the GSA Schedule process. Explore to learn more.
      • GSA Schedule Beginner's Guide
      • GSA Schedule FAQ
      • GSA MAS Consolidation
      • Consolidated Schedule
      • GSA Post-Award Checklist
      • VA Schedule Contracts
      • Download the Beginner’s Guide
  • Industries
      • Industry Categories
      • Office Management
      • Facilities
      • Furniture & Furnishings
      • Human Capital
      • Industrial Products & Services
      • -
      • Information Technology
      • Miscellaneous
      • Professional Services
      • Scientific Solutions
      • -
      • Security & Protection
      • Transportation & Logistics
      • Travel
      • List of Legacy GSA Schedules
      • Download the Beginner’s Guide
  • Services
      • Discover tailored solutions to meet your contract needs – whether you need assistance assessing your current situation and obtaining the right GSA Schedule, or ensuring your awarded GSA Schedule Contract is up-to-date and compliant. Explore to learn more.
      • Obtain a GSA Schedule
      • Manage Your GSA Contract
      • GSA Advantage
      • GSA Streamlined Offer
      • GSA Contractor Assessment
      • GSA Audit Support
      • -
      • GSA Schedule Training
      • GSA Contract Modifications
      • Federal/State Contracts
      • GSA Contract Extension
      • Download the Beginner’s Guide
  • Resources
      • Explore a variety of resources ranging from educational materials and upcoming events to contracting news and exclusive reports. Explore to learn more.
      • Resource Types
      • Key Resources
      • Insights
      • Reports
      • -
      • Events
      • Webinars
      • Download the Beginner’s Guide
  • Contact
  • About
      • Providing full-service assistance to help businesses obtain and manage a GSA Schedule Contract Explore to learn more.
      • Our Team
      • Our Founder
      • Community Impact
      • Careers
      • Clients
      • Download the Beginner’s Guide
  • Get a GSA Schedule
      • Businesses, non-profits and educational institutions can obtain a GSA Schedule Contract to sell products and services to government customers. We'll help you navigate the GSA Schedule process. Explore to learn more.
      • GSA Schedule Beginner's Guide
      • GSA Schedule FAQ
      • GSA MAS Consolidation
      • Consolidated Schedule
      • GSA Post-Award Checklist
      • VA Schedule Contracts
      • Download the Beginner’s Guide
  • Industries
      • Industry Categories
      • Office Management
      • Facilities
      • Furniture & Furnishings
      • Human Capital
      • Industrial Products & Services
      • -
      • Information Technology
      • Miscellaneous
      • Professional Services
      • Scientific Solutions
      • -
      • Security & Protection
      • Transportation & Logistics
      • Travel
      • List of Legacy GSA Schedules
      • Download the Beginner’s Guide
  • Services
      • Discover tailored solutions to meet your contract needs – whether you need assistance assessing your current situation and obtaining the right GSA Schedule, or ensuring your awarded GSA Schedule Contract is up-to-date and compliant. Explore to learn more.
      • Obtain a GSA Schedule
      • Manage Your GSA Contract
      • GSA Advantage
      • GSA Streamlined Offer
      • GSA Contractor Assessment
      • GSA Audit Support
      • -
      • GSA Schedule Training
      • GSA Contract Modifications
      • Federal/State Contracts
      • GSA Contract Extension
      • Download the Beginner’s Guide
  • Resources
      • Explore a variety of resources ranging from educational materials and upcoming events to contracting news and exclusive reports. Explore to learn more.
      • Resource Types
      • Key Resources
      • Insights
      • Reports
      • -
      • Events
      • Webinars
      • Download the Beginner’s Guide
  • Contact
3/3/2021

Get Up to Speed on CMMC

Insights

Cybersecurity Maturity Model Certification CMMC

The Cybersecurity Maturity Model Certification, or CMMC, has become an increasing hot topic in the government contracting industry. What is CMMC, does it apply to your company, and what do you need to know about the certification? The high-level overview below will help get you up to speed on CMMC.

What is CMMC?

Cybersecurity Maturity Model Certification establishes and verifies that companies within the Defense Industrial Base (DIB) are implementing cybersecurity measures to protect Federal Contract Information (FCI) and Controlled Unclassified Information (CUI) within their unclassified networks.

The CMMC Accreditation Body (CMMC-AB) will authorize and accredit CMMC Third Party Assessment Organizations (C3PAOs). Contractors that are required to meet CMMC requirements will select a C3PAO to conduct an assessment, and if the assessment report does not reveal any deficiencies, the C3PAO will issue the contractor the appropriate CMMC certificate.

It is important to emphasize, CMMC assessments can only be conducted by C3PAOs that are authorized and accredited by the CMMC-AB and listed on the CMMC-AB Marketplace. Knowing this will help prevent contractors from falling victim to CMMC related scams that have already been reported.

Who Does CMMC Impact?

CMMC impacts companies that do business with the Department of Defense (DOD), including subcontractors. There is an exception, however, for companies that only produce Commercial-Off-The-Shelf (COTS) products are exempt from CMMC requirements.

We should note, in the beginning stages, pursuing a DOD contract does not necessarily mean your company is required to meet CMMC requirements. DOD is taking a phased approach to implementing the program. According to the Office of the Under Secretary of Defense for Acquisition & Sustainment, no more than 15 new prime acquisitions will include the CMMC requirement in fiscal year 2021. That number is set to increase steadily through fiscal year 2025.

CMMC and GSA

At this time, the intent is for CMMC to be implemented within DOD contracts only. However, as FCW and FedScoop have reported, GSA has recently included CMMC language in two of their Governmentwide Acquisition Contracts (GWACs), STARS III and Polaris. According to GSA’s Federal Marketplace Strategy Release, the ASTRO solicitation will offer selected vendors the opportunity to undergo a trial third party assessment to gage readiness for any future CMMC requirement.

Two Important Notes on GSA’s Use of CMMC Language:

  • CMMC requirements for STARS III and Polaris would be at the order level
  • GWACS, including STARS and Polaris, are not part of the GSA Multiple Award Schedule (MAS) Contract

Full CMMC FAQ

Above, we provided a highly simplified overview of the Cybersecurity Maturity Model Certification. For more information and to review the full FAQ, visit the Office of the Under Secretary of Defense for Acquisition & Sustainment CMMC page here.

Additional CMMC Reading

  • FCW | CMMC reciprocity in sight for 2021
  • Federal News Network | CMMC: ‘Changing culture one company at a time’
  • Federal News Network | CMMC update: Pilots, 3PAOs and more of what vendors need to know
  • FedScoop | For contractors seeking CMMC certification, start with a self-check, DOD says
  • FedScoop | CMMC model tweaks coming after industry feedback
Share this entry
  • Share on Facebook
  • Share on Twitter
  • Share on LinkedIn
Type
  • Key Resources
  • Insights
  • Reports
  • Events
  • Webinars
Topics
  • Agency Spending
  • Cloud
  • COVID-19
  • Cybersecurity
  • Energy
  • GovCon
  • GSA Contract Holders
  • GSA Sales
  • Health IT
  • Intro to GovCon
  • Intro to GSA
  • IT
  • MAS Consolidation
  • Miscellaneous
  • New GSA SINs
  • Office Products
  • Products
  • Professional Services
  • Security
  • Services
  • Small Business
  • Solicitation Refresh
  • State/Local
  • VA Schedule
  • Veteran-Owned

You Might Also Like:

Insights
1/24/2023

SBA Size Standards Determine if Your Company is a Small Business

Insights
1/18/2023

GSA Refresh 15 Changes

Stay Informed

Sign up for our newsletter to receive updates about latest news in government contracting and GSA Schedule Contracts.

Subscribe
  • LinkedIn
  • Twitter

Federal Schedules has helped businesses of all sizes successfully obtain, manage and grow with GSA and VA Schedule Contracts for more than 35 years. As the leading government contracts consultant, FEDSched provides an unrivaled level of expertise and guidance businesses can trust to navigate the intricacies of the GSA Schedule Contract and stand out in the federal market space.

Federal Schedules GSA Schedule FAQ GSA BGuide download

FEDSched HQ

2325 Dulles Corner Boulevard, Suite 410
Herndon, VA 20171-4675
703-783-0080

Contact Us
Free Consultation

@FEDSched Latest Tweet

Does Your Company Hold One of the 38 #GSASchedule SINs Now Associated with One or More New #NAICS Codes? Use our Lookup Chart to find out: https://gsa.federalschedules.com/resources/naics-codes-in-government-contracting/?utm_source=socialmedia&utm_medium=twitter#gsa

© Copyright 2023 Federal Schedules, Inc

Sitemap | Privacy Policy

Scroll to top