CMMC Level 1 Implementation

This CMMC (Cybersecurity Maturity Model Certification) Level 1 Implementation training event focuses on helping organizations establish a security foundation required for higher levels of the CMMC model. DoD contractors are required to be CMMC Level 1 certified by January 1, 2026.

This first 4 CPE training event overviews the practices outlined in 48 CFR 52.204-21, which sets basic safeguarding requirements for covered contractor information systems. These practices must be completed by all certified organizations, forming the groundwork for cybersecurity compliance.

Some of the basic ITGC practices covered in this CPE event are focused on achieving Level 1 certification including:

• Limiting system access to authorized users
• Control and monitor user activities
• Restrict physical access to systems
• Protect against malicious code
• Regularly update software
• Create and enforce strong passwords
• Secure network connections
• Establish incident response procedures
• Backup and restore data
• Monitor and audit system activity
• Protect wireless access points
• Test and evaluate system security
• Train employees on security awareness
• Control and protect removable media
• Implement access controls and authentication mechanisms

The above practices form the basis for achieving Level 1 certification and demonstrate an organization’s commitment to basic cyber hygiene and safeguarding contractor information systems.

By completing this 4 CPE training, organizations will establish a security foundation knowledge set that is necessary for achieving CMMC Level 1 certification. This training event equips attendees with the knowledge required to begin implementing the basic safeguarding requirements, mitigate cybersecurity risks, and ensure compliance with CMMC Level 1 practices.