CMMC 2.0 Scoping for the DIB
Kyle presented the scoping methodology based on the CMMC 2.0 Level 1 and Level 2 Scoping Guides in this webinar. Scoping is a company’s first and most crucial step in preparing for NIST 800-171 and CMMC certification. Without proper scoping, a company will not know the 4 different types of assets that should be in scope. The company may spend unnecessary time and resources implementing controls for systems that may be out-of-scope.
We also discuss the shortcuts to identify Controlled Unclassified Information (CUI) assets.