Compliance

C3PAOCMMC Third-Party Assessment Organization

An organization authorized by the CMMC Accreditation Body (the Cyber AB) to conduct CMMC Level 2 assessments of defense contractors.

Related Terms

CMMC

A DoD framework requiring defense contractors to meet specific cybersecurity standards before handling federal contract information.

CMMC Level 2 (Advanced)

The mid-tier CMMC level requiring all 110 NIST SP 800-171 controls. Most contracts involving CUI require this level with third-party assessment.

The Cyber AB

The official accreditation body for the CMMC ecosystem, responsible for authorizing C3PAOs, certifying assessors, and overseeing the assessment process.

Related Guides

CMMC Compliance Guide→

← Back to Glossary