CMMC Level 1: FCI Self-Assessment and Compliance Guide

https://is1-ssl.mzstatic.com/image/thumb/Podcasts211/v4/a8/88/d1/a888d148-d430-fa42-37e4-a038b303e6f5/mza_8151132863696979177.jpg/600x600bb.jpg

Government Contractor’s Playbook

Squared Compass

99 episodes

1 day ago

The GovCon Brief is your trusted source for news, insights, and strategy in the world of government contracting. Whether you're a seasoned contractor, a small business exploring federal opportunities, or a consultant navigating the FAR, this podcast delivers weekly briefings on what matters most. We break down new regulations, high-impact RFPs, contracting trends, and insider perspectives to help you stay informed and competitive in the federal marketplace. Hosted by experts in the field, each episode blends analysis, actionable tips, and real-world stories from the frontlines of procurement.

Business

RSS

All content for Government Contractor’s Playbook is the property of Squared Compass and is served directly from their servers with no modification, redirects, or rehosting. The podcast is not affiliated with or endorsed by Podjoint in any way.

Business

https://d3t3ozftmdmh3i.cloudfront.net/staging/podcast_uploaded_episode/43877769/43877769-1762175125422-06116b2edcd06.jpg

CMMC Level 1: FCI Self-Assessment and Compliance Guide

Government Contractor’s Playbook

16 minutes 51 seconds

5 days ago

CMMC Level 1: FCI Self-Assessment and Compliance Guide

CMMC Level 1 is the entry-level cybersecurity requirement for DoD contractors handling Federal Contract Information (FCI). Since compliance is mandatory for virtually all contracts involving FCI as of November 10, 2025, this episode breaks down the 15 basic safeguarding practices (aligned with FAR 52.204-21) that you must implement. We guide small businesses through the process: how to scope your systems, ensure you have documented policies for areas like access control and malware defense, and perform the required annual self-assessment. Learn how to properly submit your findings to the DoD Supplier Performance Risk System (SPRS) and secure the mandatory Senior Official Affirmation, while avoiding major pitfalls like underscoping your systems or attempting to use Plans of Action & Milestones (POA&Ms), which are strictly disallowed at Level 1.