CMMC Level 2
CMMC consists of three (3) levels ranging from Foundational to Expert. These levels measure an organization’s degree of cyber maturity via an established set of processes, practices and focus areas.
Level 2 (Advanced) is for companies working with CUI. The requirements mirror NIST SP 800-171, and align with the 14 levels and 110 security controls developed to protect CUI.
CMMC Level 2 Requirements
Level 2 is primarily focusing on protecting, storing and transmitting Controlled Unclassified Information (CUI).