{"product_id":"cmmc-2-0-and-nist-sp-800-171-compliance-training","title":"CMMC 2.0 Compliance Training","description":"\u003cdiv\u003e\n\u003cp\u003eRecent sweeping updates to the U.S. Department of Defense Cybersecurity Maturity Model Certification (CMMC) requirements have left the consultants, contractors, and the Defense Industrial Base (DIB) questioning where this leaves us and how to proceed. This course is intended to address the questions of what CMMC 2.0 is all about, how certification will work under the new model, the SP 800-171 requirements that must be satisfied and how to meet them, and what this means for DoD contracting organizations.\u003c\/p\u003e\r\n\u003cp\u003eThese exact 800-171 requirements cover all Non-Federal Organizations (NFOs) that handle U.S. Federal Government controlled unclassified information. This course will also feature self-attestation guidance and will help organizations meet the external 3rd party assessments that will still be required for a subset of businesses handling protected U.S. Federal Government information.\u003c\/p\u003e\n\u003c\/div\u003e\u003cdiv\u003e\n\u003ch3\u003eCMMC 2.0 Compliance Training Benefits\u003c\/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eCMMC 2.0 Compliance Training Course Benefits\u003c\/strong\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eUnderstand and comply with the new CMMC 2.0 framework\u003c\/li\u003e\n\u003cli\u003eAssess CMMC 2.0 and CMMC 1.0 differences and repercussions to your organization\u003c\/li\u003e\n\u003cli\u003eMeet NIST SP 800-171 requirements\u003c\/li\u003e\n\u003cli\u003ePerform self-assessments conforming to DFARS standards and generate a SPRS score\u003c\/li\u003e\n\u003cli\u003eIdentify which contract levels are subject to independent assessments\u003c\/li\u003e\n\u003cli\u003eSatisfy third-party CMMC 2.0\/SP 800-171 assessments\u003c\/li\u003e\n\u003cli\u003eMaintain an acceptable security posture over the contract lifecycle\u003c\/li\u003e\n\u003cli\u003eContinue learning and face new challenges with after-course one-on-one instructor coaching\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003c\/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eCMMC 2.0 Compliance Training Course Prerequisites\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp\u003ePrior security experience is helpful but not necessary. Critical thinking skills and the ability to make decisions are key.\u003c\/p\u003e\n\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003c\/div\u003e\u003cdiv\u003e\u003ch3\u003eCMMC 2.0 Compliance Training Outline\u003c\/h3\u003e\u003c\/div\u003e\u003cdiv\u003e\n\u003ch4\u003eLesson 1 – The Nature of Protected Information\u003c\/h4\u003e\n\u003cul\u003e\n\u003cli\u003eAcknowledging the importance of protecting US Government information\u003c\/li\u003e\n\u003cli\u003eRecognizing categories of protected information\u003c\/li\u003e\n\u003cli\u003eDescribing protected information and the law\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003c\/div\u003e\u003cdiv\u003e\n\u003ch4\u003eLesson 2 – Threats to Protected Information\u003c\/h4\u003e\n\u003cul\u003e\n\u003cli\u003eDefining types of security failures\u003c\/li\u003e\n\u003cli\u003eJudging the impact of security failures\u003c\/li\u003e\n\u003cli\u003eDefining risk\u003c\/li\u003e\n\u003cli\u003eIdentifying threats and vulnerabilities in organizational systems\u003c\/li\u003e\n\u003cli\u003eRecognizing motivations for data compromise\u003c\/li\u003e\n\u003cli\u003eIdentifying characteristics of threat actors\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003c\/div\u003e\u003cdiv\u003e\n\u003ch4\u003eLesson 3 – Introduction to CMMC 2.0\u003c\/h4\u003e\n\u003cul\u003e\n\u003cli\u003eDescribing CMMC Goals\u003c\/li\u003e\n\u003cli\u003eSynopsizing CMMC Evolution\u003c\/li\u003e\n\u003cli\u003eDefining the model tiers\u003c\/li\u003e\n\u003cli\u003eDescribing the four CMMC 2.0 program phases\u003c\/li\u003e\n\u003cli\u003eListing assessment requirements\u003c\/li\u003e\n\u003cli\u003eExplaining model implementation\u003c\/li\u003e\n\u003cli\u003eCharting the CMMC implementation timeline\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003c\/div\u003e\u003cdiv\u003e\n\u003ch4\u003eLesson 4 – CMMC 2.0 and NIST SP 800-171\u003c\/h4\u003e\n\u003cul\u003e\n\u003cli\u003eDescribing NIST SP 800-171, SP 800-171A, and SP 800-172\u003c\/li\u003e\n\u003cli\u003eCategorizing security controls\u003c\/li\u003e\n\u003cli\u003eIdentifying SP 800-171 control families\u003c\/li\u003e\n\u003cli\u003eDescribing SP 800-171 security control structure\u003c\/li\u003e\n\u003cli\u003eExplaining the importance of basic assumptions underlying SP 800-171\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003c\/div\u003e\u003cdiv\u003e\n\u003ch4\u003eLesson 5 – Characterizing the Non-Federal System\u003c\/h4\u003e\n\u003cul\u003e\n\u003cli\u003eIdentifying NARA CUI categories and markings\u003c\/li\u003e\n\u003cli\u003eVerifying confidentiality impact level\u003c\/li\u003e\n\u003cli\u003eIdentifying special considerations for classified defense information\u003c\/li\u003e\n\u003cli\u003eDetermining the organizational system boundary\u003c\/li\u003e\n\u003cli\u003eBuilding the System Security Plan\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003c\/div\u003e\u003cdiv\u003e\n\u003ch4\u003eLesson 6 – Securing the Organizational System\u003c\/h4\u003e\n\u003cul\u003e\n\u003cli\u003eDetermining the security control baseline\u003c\/li\u003e\n\u003cli\u003eAssessing the need for enhanced assurance\u003c\/li\u003e\n\u003cli\u003eUpdating the System Security Plan\u003c\/li\u003e\n\u003cli\u003eTailoring the security control baseline\u003c\/li\u003e\n\u003cli\u003eSelecting the approach to securing organizational systems\u003c\/li\u003e\n\u003cli\u003eImplementing security controls\u003c\/li\u003e\n\u003cli\u003eDocumenting security control implementation, compliance, and effectiveness\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003c\/div\u003e\u003cdiv\u003e\n\u003ch4\u003eLesson 7 – Assessing System Cybersecurity Risk\u003c\/h4\u003e\n\u003cul\u003e\n\u003cli\u003eBuilding the Security Assessment Plan\u003c\/li\u003e\n\u003cli\u003eAssessment methodologies\u003c\/li\u003e\n\u003cli\u003eAssessment optimization\u003c\/li\u003e\n\u003cli\u003eAssessing security control compliance and effectiveness\u003c\/li\u003e\n\u003cli\u003eDocumenting security control compliance\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003c\/div\u003e\u003cdiv\u003e\n\u003ch4\u003eLesson 8 – Reporting Self-Assessment Results\u003c\/h4\u003e\n\u003cul\u003e\n\u003cli\u003eCompleting the System Security Plan\u003c\/li\u003e\n\u003cli\u003eBuilding the Plan of Action and Milestones (POA\u0026amp;M)\u003c\/li\u003e\n\u003cli\u003eRequesting CMMC waivers\u003c\/li\u003e\n\u003cli\u003eCompiling the assessment report\u003c\/li\u003e\n\u003cli\u003ePreserving an acceptable system security posture\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003c\/div\u003e","brand":"Learning Tree","offers":[{"title":"267B56US \/ 2026-07-07T09:00:00 \/ Herndon, VA","offer_id":47534211694811,"sku":"US-2074-IL","price":2512.0,"currency_code":"USD","in_stock":true},{"title":"26AC19US \/ 2026-10-06T09:00:00 \/ Herndon, VA","offer_id":48216550932699,"sku":"US-2074-IL","price":2512.0,"currency_code":"USD","in_stock":true},{"title":"271C64US \/ 2027-01-05T09:00:00 \/ Herndon, VA","offer_id":48216550965467,"sku":"US-2074-IL","price":2512.0,"currency_code":"USD","in_stock":true},{"title":"274C16US \/ 2027-04-06T09:00:00 \/ Herndon, VA","offer_id":48567540187355,"sku":"US-2074-IL","price":2512.0,"currency_code":"USD","in_stock":true}],"url":"https:\/\/learningtreeinternational-dirinfosec-hhs.myshopify.com\/products\/cmmc-2-0-and-nist-sp-800-171-compliance-training","provider":"Learning Tree International","version":"1.0","type":"link"}