DoW’s
Cybersecurity Maturity Model Certification Program is designed to protect
Federal Contract Information (FCI) and Controlled Unclassified Information
(CUI) that is shared with defense contractors. It ensures that sensitive
government information is not exposed to unauthorized entities which could
undermine DoW operations. The Office of DoW, CIO, CMMC Program Management
Office, is pleased to present a new series of
Micro-learning training to help with adoption of CMMC contract
requirements.
Each Micro-learning
focuses on a specific CMMC subject of interest to contracting officers and
specialists, program managers and requiring activities, and the DIB community
at large. New topics are being added in
response to frequently asked questions.
The Defense
Industrial Base will benefit from this Micro-learning as it specifies ”The
Differences in SPAs and SPDs.” The CMMC
Assessment Scope for CMMC Level 2 requires specifications of asset categories
and their requirements which may include SPAs and SPDs. In this Micro-learning
we define SPAs and SPDs, provide examples of SPAs and SPDs and describe their
relationship to each other and CUI. This
training will provide helpful information for the OSA on updating the System
Security Plan examples of SPAs and SPDs so the OSA has a clear understanding of
how to protect these