Higher Education Research, Cybersecurity, and CMMC Compliance

Published:: Friday, August 7, 2020
: Briefs, Case Studies, Papers, Reports

Author(s) and Contributors:: Author(s): Brian Kelly Raluca Ada Popa

Source(s) and Collection(s):: Sources(s): EDUCAUSE Publications

ParentTopics:: Access Control Cloud Security Compliance Cyber Threat Intelligence Cybersecurity Cybersecurity Maturity Model Certification (CMMC) Data Security Encryption Intrusion Detection and Prevention Security Architecture and Design Security Operation Center (SOC) Security Risk Management

Abstract

This brief was written to clarify the Department of Defense’s (DoD) new Cybersecurity Maturity Model Certification (CMMC) framework and to guide your institution on its journey to CMMC compliance.
This paper provides a high-level overview of the CMMC framework and its key components. It explains basic cybersecurity principles and how they connect with CMMC, and recommends first steps to take on your institution’s journey to CMMC compliance. That path will be made smoother by collaborating with your peers and learning from the work they’ve already done; several opportunities to do so are described herein. The paper culminates with a set of brief perspectives from research institutions outlining what they’re doing now to support cybersecurity for DoD research and CUI, and to position their institutions for CMMC compliance and certification.

Authors: Brian Kelly (EDUCAUSE), Raluca Ada Popa (UC Berkeley)

Download Resources

Download PDF