Properly Scoping Your Environment (E01c)
Organizations are improperly scoping their environment by believing they are required to implement CMMC. Beginning with debunking the “”Implementing CMMC”” myth, this talk will walk you through the proper steps to first apply the NIST SP 800-171 Scope of Applicability and then to apply the CMMC Assessment Scoping Guide to categorize assets in preparation for a CMMC Conformity Assessment. By following the correct order, conversations about enclaving get simplified.
1. Debunk “”Implementing CMMC”” Myth
2. Understand the NIST SP 800-171 Scope of Applicability (SOA)
3. Understand how the CMMC Assessment Scope fits within the NIST SP 800-171 SOA
4. Using the NIST SP 800-171 SOA to drive Enclaving decisions