CUI with non-prioritized acquisitions: CUI without prioritized acquisitions, which is information that is not critical to national security, can perform an annual self-assessment for their certification following the same process as Level 1 organizations. Level 3 - Expert - Critical CUI (DoD Assessed...
The Department of Defense (DoD) introduced CMMC 2.0 in November 2021 as a streamlined and improved version of the original CMMC 1.0. CMMC 2.0 is designed to reduce costs and complexity while maintaining high security standards. For example, the DoD reduced the number of maturity levels from ...
FCI and CUI flow down to contractors from a prime contractor or from the government itself. But keep in mind: As part of your contracting work, you might produce information that falls into these categories. For example, if you produce part designs for use by the DoD, those designs might ...