Events

The CMMC 2.0 Paradigm and Contractor Supply Chain Risk Management Obligations

Since January 2018, the Defense Department (and now other agencies) has required prime contractors and subcontractors at all tiers to implement NIST SP 800-171, “Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations.” Between January 2018 and November 2021, the Defense Department issued numerous guidance memoranda regarding NIST-171 and set up an arrangement with the Cybersecurity Maturity Model Certification – Accreditation Board. In turn, the CMMC-AB developed a “CMMC ecosystem” based on NIST-171 and related NIST guidance in order to identify NIST-171 cybersecurity objectives intended for contractors and subcontractors who handle, create or store “controlled unclassified information” or CUI. A significant element of this ecosystem was the creation of an infrastructure which facilitates education, training and third-party assessment leading to the certification of a DIB company’s implementation of CMMC 1.0 compliance.

The Defense Department paused implementation of the CMMC 1.0 program by introducing CMMC 2.0 through an Advanced Notice of Proposed Rulemaking published November 4, 2021. DoD did not pause compliance with FAR 52.204-2 or DFARS 252.204-7012.

Your company’s level of CMMC 2.0 “cyber hygiene” will directly impact your eligibility to contract or subcontract with the Defense Department (and likely non-DoD agencies such as the GSA and the DHS) as well as impact your competitive posture anywhere in the DoD supply or service chain.

In this Program, you will learn about:

  • The prospective CMMC 2.0 schedule;
  • Federal cybersecurity vocabulary: CUI, FCI, CDI, CTI;
  • CUI marking obligations by government personnel and contractor personnel
  • How CMMC 2.0 “Level 1” (the foundational level) effectively applies to all federal agencies;
  • The requirements of FAR 52.204-21 and DFARS 252.204-7012 and the current DFARS 252.204-7019, 7020, and 7021 clauses;
  • DoD’s Assessment Methodology;
  • The Supplier Performance Risk System (SPRS);
  • The DoD guidance available to achieve CMMC 2.0 Level 1 and Level 2 (the advanced level);
  • The available self-assessment programs;
  • The requirements under [Draft] NIST SP 800-172 contained in CMMC Level 3 to address Advance Persistent Threats;
  • The quality of a System Security Plan and the CMMC 2.0 emphasis of a Plan of Action & Milestones)
  • CMMC 2.0, the Cloud and FedRAMP;
  • The government-wide supply chain obligations regarding Chinese sources
    • DoD guidance
    • GSA guidance
  • DoD supply chain obligations regarding Chinese and Russian sources
    • DoD guidance
Register Now

Event Date March, 3

Event Time 5:30am - 7:00am

Share With Friends

Featured News

December 4, 2025

Hilton Once Again Honored as World’s Best Workplace

Hilton Worldwide has once again been named the World’s Best Workplace by Fortune and Great Place to Work, marking a decade of recognition for its people-first culture and global leadership in hospitality. Headquartered in the McLean area of Fairfax NOVA, Hilton’s global hub continues to guide a workforce of more than 500,000 team members across 9,000 properties in 141 countries and territories. “This milestone goes beyond rankings – it’s a reflection of who we are and what we’ve always believed:…
Read More
December 4, 2025

Enterprise e-Support, Inc.: Turning Complexity Into Clarity for Modern IT Missions

Across the public and private sectors, organizations are navigating a rapidly evolving technology landscape defined by growing data volumes, aging systems, and increasing security demands. Enterprise e-Support, Inc. (EeS), a Fairfax NOVA-based technology company, focuses on helping organizations meet these challenges through secure, AI-enabled solutions that simplify and modernize complex IT environments. EeS develops cloud-based platforms that integrate enterprise architecture, streamline data management, reduce technical debt, and enhance cybersecurity. Its Nishkarsh® product suite, built and patented in the United States, supports…
Read More
November 27, 2025

Fairfax County Economic Development Authority Team Donates Over 3,400 lbs to Annual Thanksgiving Food Drive

This giving season, the Fairfax County Economic Development Authority (FCEDA) team came together for the fifth consecutive year to support Food for Others through an annual food drive contributing canned goods and other non-perishable items to help neighbors in need. This year, the FCEDA team donated 3,413 pounds of food, bringing the total contributed since 2021 to an impressive 10,678 pounds. Team FCEDA is proud to support Food for Others and is grateful for the Fairfax County business community for…
Read More
See All News