CMMC Compliant Products and Services

Back to Top

 

To reduce risk to National Security, agencies must protect Federal Contract Information (FCI) and Controlled Unclassified Information (CUI) on supplier networks. The Cybersecurity Maturity Model Certification (CMMC) was created by the Department of Defense to raise the level of information security across the entire Defense Industrial Base (DIB) and protect our nation's critical data.

 

Carahsoft and our partners have assembled products and services to help the defense community address CMMC requirements. View our leading technology solutions by CMMC domain, below.

Featured CMMC Solution Providers by Domain

CMMC organizes cybersecurity processes and best practices into 3 maturity levels and 14 capability domains based on requirements in FAR Clause 52.204-21, NIST Special Publication 800-171, and NIST Special Publication 800-172. The 3 Maturity Levels of the CMMC Framework are:

  • Level 1 Foundational Security: FAR Clause 52.204-21 17 practices for basic safeguarding of FCI
  • Level 2 Advanced Security: Aligns with NIST 800-171's 110 controls and security requirements
  • Level 3 Expert Security: Expected to align with NIST 800-172's enhanced security requirements

Explore CMMC capability domains and compliant technologies from our solution providers below.

Search By:

  • AT - Awareness & Training (13)
  • AC - Access Control (37)
  • AU - Audit & Accountability (34)
  • CA - Security Assessment (23)
  • CM - Configuration Management (28)
  • IA - Identification & Authentication (28)
  • IR - Incident Response (29)
  • MA - Maintenance (16)
  • MP - Media Protection (21)
  • PE - Physical Protection (7)
  • PS - Personnel Security (8)
  • RA - Risk Assessment (27)
  • SC - System & Communications Protection (34)
  • SI - System & Information Integrity (32)

Carahsoft’s Portfolio of CMMC Products & Services

AT - Awareness & Training
AC - Access Control
AU - Audit & Accountability
CA - Security Assessment
CM - Configuration Management
IA - Identification & Authentication
IR - Incident Response
MA - Maintenance
MP - Media Protection
PE - Physical Protection
PS - Personnel Security
RA - Risk Assessment
SC - System & Communications Protection
SI - System & Information Integrity

CMMC Sales Desk at Carahsoft

Carahsoft is the trusted distributor for the DIB and CMMC. Our Subject Matter Experts can help identify the right solutions for your agency based on unique challenges within your IT environment.

Explore the Carahsoft CMMC Sales Desk to learn how we can help you achieve CMMC compliance and embrace this critical National Security mission.   

CMMC-Sales-Desk.jpg

Military DC.jpg

Governance, Risk and Compliance

Governance, Risk and Compliance (GRC) is critical for Defense agencies to fulfill the security requirements established by the CMMC. Explore our vendors that deliver GRC platforms aligned with the CMMC framework. .

Managed Security Service Providers

Managed Security Service Providers (MSSPs) support Federal agencies with network security support that ensures CMMC compliance. Learn more about our MSSP partners that meet CMMC requirements.

Pentagon

CMMC levels infographic

CMMC Framework Explained

CMMC is the cybersecurity framework used by the DoD to measure a suppliers’ cybersecurity maturity and ensure protection of CUI residing on contractor networks. The CMMC framework includes an assessment requirement that verifies the execution of security practices by maturity level and standardizes implementation across the DIB.

Education

FCW_Jan-Feb_full_report_thumbnail.jpg
Report: CMMC: Securing the Defense Industrial Base
As the Defense Department moves forward on its cybersecurity requirements for contractors, a growing ecosystem of technology providers is helping companies navigate the journey to certification.
Supply_Chain_Risk_thumbnail.jpg
Federal Report Supply Chain/CMMC
Learn from leaders at DoD, NIST, NTIA, and CISA on how agencies are reevaluating their security posture. Featuring additional insights from technology leaders at Trustwave, Qmulos, Zscaler, Solarwinds, and MicroFocus Government Solutions.
Article_Thumbnail_Example_Tenable.jpg
Managing Cyber Exposure in Law Enforcement
Michael Rothschild, Senior Director of Marketing for Tenable, shares advice for protecting data and resources as the cybercrime landscape expands and evolves.

Community Trends Blog


Upcoming Events

Webcast
Zscaler_BrandAssets_LogoLockup_80px.png
CMMC EVENT
Hosted By: Carahsoft & Zscaler
Carahsoft November 19, 2024
Carahsoft 7:00 PM ET


Webcast
Zscaler_BrandAssets_LogoLockup_80px.png
CMMC EVENT
Hosted By: RADICL & Carahsoft
Carahsoft November 01, 2024
Carahsoft 7:00 PM MT


Resources

CMMC 2.0: Mapping Appgate SDP Access Controls for Defense Contractors RESOURCE
Appgate SDP’s cybersecurity is directly aligned with the stringent requirements of CMMC 2.0, providing employees with effective security measures to protect sensitive data, manage compliance, and strengthen their cybersecurity posture. This eBook provides an overview of CMMC 2.0 requirements and governance relative to the NIST 800-171 standard.


RESOURCE
Federation Bubbles with Justin Richer introduces a flexible model for identity federation, where trust is dynamically managed based on context. This approach allows for secure, isolated, and adaptable spaces, even in disconnected environments, ensuring stronger security for modern systems.


News

SolCyber and Carahsoft Forge Alliance to Expedite CMMC Compliance for Defense Contractors
CMMC NEWS
Carahsoft May 21, 2024

SolCyber and Carahsoft Technology Corp., The Trusted Government IT Solutions Provider®, proudly announce the launch of their groundbreaking initiative: The CMMC Readiness Program.


>

Carahsoft, Cyturus Technologies, and Gold Comet: CMMC 2.0 Compliance Partnership
CMMC NEWS
Carahsoft January 14, 2024

Gold Comet has recently joined in partnership with Carahsoft and Cyturus Technologies to provide CMMC certification support to customers seeking accreditation. Gold Comet will support this effort with quantum-secure data storage for customer records management.


>