Welcome to part 10 of “What you need to know about CMMC”. I’m Bob Hanley from Sabre Systems and today we will continue our discussions on the 17 CMMC domains as we help you in your efforts to be CMMC ready. If you remember, we discussed physical protection last week. Today, we will discuss risk management or RM for short. Remember, CMMC is about protecting controlled, unclassified information (CUI), which includes lim-dis and FOUO – limited distribution and for official use only.
So, where are we in this journey through the CMMC domains? Let me catch everybody up, especially if you’re new to this vlog. We’ve already reviewed nine domains: awareness training, configuration management, identification and authentication, incident response, maintenance, media protection, personnel security, physical protection and recovery. If you missed any, please go back and take a look at the vlogs that were previously posted to get caught up. All these domains connect and relate to each other, they are complementary so it’s important as we move on to think in those terms and get that overall understanding of these domains within that context. Read the full script.