Certified CMMC Professional (CCP)

The Cybersecurity Maturity Model Certification (CMMC), managed by the CMMC Accreditation Body (CMMC-AB), is a program through which an organization's cybersecurity program maturity is measured by their initial and ongoing compliance with applicable cybersecurity practices, as well as their integration of corresponding policies and plans into their overall business operations.

This course prepares students for the CMMC-AB Certified CMMC Professional (CCP) certification, which authorizes the holder to use the CMMC-AB Certified CMMC Professional logo, to participate as an Assessment Team Member under the supervision of a Certified CMMC Assessor, and to be listed in the CMMC-AB Marketplace.

The U.S. Department of Defense released CMMC 2.0 in November 2021 aimed to streamline requirements and focus on NIST standards. The current CCP curricula focuses on the backbone of NIST 800-171, Controlled Unclassified Information (CUI), data governance, and ethics. Prior to the exam, the CMMC-AB will offer free delta training to all CCP candidates who have successfully completed training.

---

Course Objectives

In this course, you will learn about the CMMC Model, framework, context, and application within the DoD, as well as the expectations and requirements imposed upon organizations that do business with the DoD. It will also help students to identify threats to cybersecurity and privacy within an IoT ecosystem and implement appropriate countermeasures.

You will:

• Identify the threats to the defense supply chain and the established regulations and standards for managing the risk.
• Identify the sensitive information that needs to be protected within the defense supply chain and how to manage it.
• Describe how the CMMC Model ensures compliance with federal acquisitions regulations.
• Identify responsibilities of the Certified CMMC Professional, including appropriate ethical behavior.
• Establish the Certification and Assessment scope boundaries for evaluating the systems that protect regulated information.
• Evaluate OSC readiness and determine the Objective Evidence you intend to present to the assessor.
• Use the CMMC Assessment Guides to assess Objective Evidence for processes and practices.
• Implement and evaluate practices required to meet CMMC Level 1.
• Identify processes and practices required to meet CMMC Level 2.
• As a CCP, work through the logistics of a CMMC Assessment.

---

Target Student

This course is a prerequisite for the Certified CMMC Professional program, and it prepares students for the Certified CMMC Professional (CCP) certification exam. Students might consider taking this course to learn how to perform CMMC certification readiness checks within their own organization or as a consultant to other Organizations Seeking Certification (OSC). The CCP certification is also a step toward becoming a Certified CMMC Assessor (CCA), so students might take this course to begin down the path toward CCA certification.

---

Prerequisites

To ensure your success in this course, you should have some foundational education or experience in cybersecurity. The CMMC-AB has established prerequisites for those who wish to apply for CCP certification, such as:

• College degree in a cyber or information technical field with 2+ years of experience; or
• 2+ years of equivalent experience (including military) in a cyber, information technology, or assessment field.

---

Course Resources

• Certified CMMC Professional (CCP) Course Outline