C3PAO - ✔✔CMMC Third Party Assessment Organization
LPP - ✔✔Licensed Partner Publishers
LTP - ✔✔Licensed Training Providers
CCI - ✔✔Certified CMMC Instructor
What does DFARS 252.204-7019 Require? - ✔✔DFARS 252.204-7019 requires the implementation of
NIST SP 800-171 standards with an assessment no older than 3 years.
SPRS Score
What does DFARS 252.204-7020 Require? - ✔✔DFARS 252.204-7020 requires a contractor/sub
contractor to provide the government with access to its facilities.
What does DFARS 252.204-7021 Require? - ✔✔DFARS 252.204-7021 requires the CMMC Certification
What does DFARS 252.204-7012 Require? - ✔✔DFARS 252.204-7012 requires reporting of cyber
incidents within 72 hours, the submission of malicious software, and damage assessments.
What organization is in charge of CMMC Assessors and Instructors? - ✔✔CAICO (CMMC Assessors and
Instructors Certification Organization)
, What organization ensures that stakeholders operate in accordance with ethical and professional
guidelines, and that assessments are fair, consistent, and meet with the CMMC requirements? -
✔✔CMMC Accreditation Body (CYBER AB)
What entities fall under the C3PAO/Assessment Category? - ✔✔CCA
CCP
PA
What entities fall under the RPO/ Peparation category? - ✔✔RP
What entities fall under the Training/LTP category? - ✔✔CCI
PI
What entities fall under the education category? - ✔✔LPP
True or False:
Self assessments must be done every year, and C3PAO assessments must be done every three years for
CMMC Level 2. - ✔✔True
How long can an OSC maintain a Level 2 (third party assessment) status? - ✔✔Three Years
True or False:
All entities within the CMMC ecosystem must undergo a background check and sign the Code of
Professional Conduct (COPC). - ✔✔True
True or False:
If the objectivity of an Assessment Team Member is questioned, first discuss it privately with them or
the lead assessor. - ✔✔True
What Code of Federal Regulations (CFR) covers CUI? - ✔✔Part 32 CFR 2002
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through EFT, credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying this summary from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller VasilyKichigin. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy this summary for R239,18. You're not tied to anything after your purchase.