DoD is taking a supply-chain risk-management approach to improving cybersecurity. That means that all 300,000 DoD contractors will need to obtain third-party certification that they meet requirements for the CMMC maturity level appropriate to the work they wish to do for the DoD.
This paper provides a high-level overview of the new CMMC framework and its key components. It also answers the pressing question of what your company needs to do to comply with CMMC and, likewise, work with the DoD. For a print-ready version, download here.