CMMC Level 2 Readiness Score
Answer 15 questions across the 5 highest-impact CMMC practice families. Get your Level 2 readiness score with NIST SP 800-171 mapped gap analysis. 3 minutes. No signup. No email.
What this audit covers
- 🔐Access Control & Authentication
NIST SP 800-171 family AC (Access Control) + IA (Identification and Authentication). Limit system access to authorized users, enforce least privilege, require multi-factor authentication for privileged and remote access. AC.L2-3.1.1 through 3.1.22.
- ⚙️Configuration Management & Maintenance
NIST SP 800-171 family CM (Configuration Management) + MA (Maintenance). Baseline configurations, change control, software whitelisting, controlled maintenance.
- 🚨Incident Response & Audit Accountability
NIST SP 800-171 family IR (Incident Response) + AU (Audit and Accountability). Detect, report, contain, and recover from cyber incidents. Audit logs must be reviewed and retained.
- 🔒Media Protection & Physical Security
NIST SP 800-171 family MP (Media Protection) + PE (Physical Protection). Protect digital and physical media containing CUI; control physical access to facilities housing CUI systems.
- 🛡️System & Information Integrity + Risk Assessment
NIST SP 800-171 family SI (System and Information Integrity) + RA (Risk Assessment). Identify and report system flaws; protect against malicious code; periodic risk assessments.
Free. No signup required. Maps to NIST SP 800-171 Rev. 3 control families.