CMMC-CP - Certified CMMC Professional (CCP)

This course prepares students for the CMMC-AB Certified CMMC Professional (CCP) certification, which authorizes the holder to use the CMMC-AB Certified CMMC Professional logo, to participate as an Assessment Team Member under the supervision of a Certified CMMC Assessor, and to be listed in the CMMC-AB Marketplace. The CCP certification is also prerequisite for the other Certified CMMC Assessor certifications (CCA-1, CCA-3, and CCA-5).

In this course, you will learn about the CMMC Model, framework, context, and application within the DoD, as well as the expectations and requirements imposed upon organizations that do business with the DoD. It will also help students to identify threats to cybersecurity and privacy within an IoT ecosystem and implement appropriate countermeasures.

This course is for the latest version of CMMC 2.0

Course Objectives
Identify the threats to the Defense Supply Chain and the established regulations and standards for managing the risk.
Identify the sensitive information that needs to be protected within the Defense Supply Chain and how to manage it.
Describe how the CMMC Model ensures compliance with federal acquisitions regulations.
Identify responsibilities of the Certified CMMC Professional, including appropriate ethical behavior.
Establish the Certification and Assessment scope boundaries for evaluating the systems that protect regulated information.
Prepare the OSC for an Assessment by evaluating readiness.
Use the CMMC Assessment Guides to determine and assess the Evidence for practices.
Implement and evaluate practices required to meet CMMC Level 1.
Identify the practices required to meet CMMC Level 2.
As a CCP, work through the CMMC Assessment process.

Who Should Attend?
This course is a prerequisite for the Certified CMMC Professional program, and it prepares students for the Certified CMMC Professional (CCP) certification exam. Students might consider taking this course to learn how to perform CMMC certification readiness checks within their own organization, or as a consultant to other Organizations Seeking Certification (OSC). The CCP certification is also a required step toward becoming a Certified CMMC Assessor (CCA), so students might take this course to begin down the path toward CCA certification.

Student Testimonials

Instructor did a great job, from experience this subject can be a bit dry to teach but he was able to keep it very engaging and made it much easier to focus. Student
Excellent presentation skills, subject matter knowledge, and command of the environment. Student
Instructor was outstanding. Knowledgeable, presented well, and class timing was perfect. Student

Click here to print this page »


To ensure your success in this course, you should have some foundational education or experience in cybersecurity. The CMMC-AB has established prerequisites for those who wish to apply for CCP certification, such as: College degree in a cyber or information technical field with 2+ years of experience; or 2+ years of equivalent experience (including military) in a cyber, information technology, or assessment field.

Detailed Class Syllabus

1 - Managing Risk within the Defense Supply Chain

Identify Threats to the Defense Supply Chain
Identify Regulatory Responses against Threats

2 - Handling Sensitive Information

Identify Sensitive Information
Manage the Sensitive Information

3 - Ensuring Compliance through CMMC

Describe the CMMC Model Architecture
Define the CMMC Program and Its Ecosystem
Define Self-Assessments

4 - Performing CCP Responsibilities

Identify Responsibilities of the CCP
Demonstrate Appropriate Ethics and Behavior

5 - Scoping Certification and Assessment Boundaries

Use the CMMC Assessment Scope Documentation
Get Oriented to the OSC Environment
Determine How Sensitive Information Moves
Identify Systems in Scope
Limit Scope

6 - Preparing the OSC

Foster a Mature Cybersecurity Culture
Evaluate Readiness

7 - Determining and Assessing Evidence

Determine Evidence
Assess the Practices Using the CMMC Assessment Guides

8 - Implementing and Evaluating Level 1

Identify CMMC Level 1 Domains and Practices
Perform a CMMC Level 1 Gap Analysis
Assess CMMC Level 1 Practices

9 - Identifying Level 2 Practices

Identify CMMC Level 2 Practices

10 - Working through an Assessment

Identify Assessment Roles and Responsibilities
Plan and Prepare the Assessment
Conduct the Assessment
Report the Assessment Results
Conduct the CMMC POA&M Close-Out Assessment