New Book on CMMC Compliance

Friends and colleagues, I co-authored this new book on CMMC compliance with 20 other cybersecurity experts from around the world. In this book, we provide guidance to successfully get the certification and navigate the complex requirements of the Cybersecurity Maturity Model Certification framework.

The CMMC (Cybersecurity Maturity Model Certification) is a unified standard for implementing cybersecurity across the defense industrial base. Whether you're a small contractor or a large enterprise, understanding and implementing CMMC requirements is essential for doing business with the Department of Defense.

Our book covers:

• Level 1 (Foundational): Basic cyber hygiene practices
• Level 2 (Advanced): Aligning with NIST SP 800-171
• Level 3 (Expert): Reducing risk from advanced persistent threats

We've distilled our collective experience into practical, actionable guidance that organizations can use to assess their current state, identify gaps, and implement the necessary controls to achieve compliance.