The DoD (Department of Defense) has scheduled the release of the updated CMMC (Cybersecurity Maturity Module Certification) regulation and the start of formal CMMC certification requirements in DoD contracts for 2023. Any manufacturer engaged in DoD contracts or seeking to obtain DoD contracts must comply with these regulations. In order to assist Delaware manufactures to become aware of the regulations and new changes to the regulation, DEMEP is co- sponsoring a series of webinars designed to familiarize manufacturers with the CMMC regulations. These sessions will provide you timely information how CMMC will impact your businesses and how you can prepare.

Below is a full description of each webinar and a link for registration.

Conducting a CMMC Self-Assessment

June 15, 2023

Time: 2-3PM EST

To avoid wasting time and money as you prepare for CMMC certification, it is important to understand your starting point. A self-assessment is a great tool that can reveal your organization’s strengths and gaps that need to be closed. The challenges with a self-assessment are to have a good understanding of what is required and how well your systems and operational practices match up. We’ll be walking through a self-assessment together in this session that will cover:

  • What standards should you use to prepare a self-assessment?
  • What steps should be followed?
  • Who should be involved?
  • How to correctly determine your current state?
  • How should results be summarized and presented to management?

Join us for this hands-on session to help you get started on your self-assessment.
Register for this event

How to Prepare a CMMC System Security Plan

July 20, 2023

Time: 2-3PM EST

One of the central documents needed for CMMC certification is your System Security Plan (SSP). This detailed document spells out how each of the 110 requirements of NIST SP 800-171 (the foundational CMMC standard) are being met by your organization. Your SSP (System Security Plan) will be one of the first things a CMMC assessor will review for certification and it needs to be done right. This webinar will explain how to build a comprehensive SSP that addresses all of the requirements for CMMC Certification. We’ll cover the following:

  • What is the purpose of an SSP and where do the requirements for this document come from?
  • What are the topics to be addressed and how should it be organized?
  • How detailed should it be for the assessment?
  • Who should be responsible for developing and maintaining the SSP?
  • How often should the SSP be updated?

We’ll be looking inside this foundational CMMC document that can make or break your assessment. Please plan to join us.
Register for this event

The Heavy Lift of CMMC – Documentation

August 17, 2023

Time: 2-3PM EST

To successfully pass a CMMC assessment, you’ll not only need to have the right technologies and follow the right processes, but you’ll have to show your compliance through documentation. The CMMC assessors have been trained that “if it’s not documented, it doesn’t exist”. Proper documentation will be one of the major focuses during your CMMC assessment. In addition to a System Security Plan (SSP), you’ll also need to have policies, diagrams and numerous evidence artifacts to show during your assessment. In this webinar, we’ll lay out a plan to properly document your CMMC program including:

  • What specific documents need to be developed to meet CMMC requirements?
  • What is a Plan of Action and Milestones (POAM) and how should it be used?
  • How many policies and procedures are needed?
  • How should policies be organized and what topics must be included?
  • How should CMMC documentation be controlled and how often should they be updated?

Join us as we look through the various documents that need to be put in place to successfully pass a CMMC assessment.
Register for this event

How to Finance Your Next Project for Manufacturers

Wednesday, September 20, 2023

Time: Noon to 1:00 PM EST

Are you planning to expand your manufacturing operations? Do you plan to improve your manufacturing process? Could you grow your manufacturing operations, if you had access to capital? DEMEP offers a lunch and learn webinar to explore banking solutions for manufacturers. The webinar is designed to answer basic questions about financing options to purchasing capital equipment, ERP systems, automation/robotic systems, and certifications (ISO, Cyber Security, CGMP, GLP, etc.).

Marty Carilno
Vice President
SBA Relationship Manager
Fulton Bank

Marlow Hicks, PE

Register for this event

How to Keep CMMC Affordable

September 21, 2023

Time: 2-3PM EST

For most small businesses, CMMC can become a significant cost in time and money. While it might be considered a cost of doing business with the DoD or prime defense contractors, the ROI can quickly dwindle unless the most affordable options are investigated. This includes various technology alternatives as well as the most efficient processes. In this webinar, we’ll be discussing the costs associated with CMMC certification and where the biggest savings can be found. This will include:

  • The importance of an accurate self-assessment to reveal true gaps
  • The impacts of workflows and scope
  • The choices between upgrading your existing network vs. utilizing a separate enclave to control CUI. 4. What to handle with internal resources and when to use external 3rd-parties
  • How to design your CMMC program for efficiency and cost over the long term

Please join us as we discuss practical ways to save money on your CMMC certification investment.
Register for this event

CMMC With No IT Staff

October 19, 2023

Time: 2-3PM EST

One thing is very apparent with CMMC, it is very technical and will require a high degree of technical skill to do it properly. But, many small businesses don’t have a dedicated IT staff, or their IT team has no hands-on experience with meeting technical standards. How can a business with limited or no IT staff achieve CMMC certification? In this session, our team will explain the technical resources and skills needed to prepare for a CMMC certification. We’ll address:

  • Which CMMC requirements involve technology and which are organizational processes?
  • What technical decisions will companies face when preparing for CMMC?
  • In what cases can an external IT expert be helpful?
  • Can CMMC certification be achieved without an IT staff on the payroll?
  • What are the pros and cons of hiring your own IT staff?

Join this informative session as we discuss the “IT skills-gap” common to so many small businesses.

Register for this event

CMMC Assessments – What to Expect

November 16, 2023

Time: 2-3PM EST

To become CMMC Level 2 certified, you’ll need to pass a CMMC assessment by a 3rd-party assessment company called a C3PAO. CMMC assessments are highly detailed and require demonstrable evidence that you meet each of the NIST SP 800-171 controls. In order to be certified, all 320 control objectives must be met. In this session we’ll be pulling back the curtain on a CMMC assessment. We’ll be uncovering important details such as:

  • How is a CMMC assessment conducted and who will need to participate?
  • What objective evidence will the assessor look for?
  • How long will a CMMC assessment take and what will it cost?
  • How should you choose your C3PAO to conduct the assessment?
  • Who will make up the CMMC assessment team?

Join us as we peek into the details of a CMMC assessment to help you be well prepared.
Register for this event