CCP Lesson 10 Flashcards
Enterprise Mission Assurance Support Service (CMMC eMASS)
A web-based U.S. Department of Defense off-the-shelf solution that automates a broad range of services for cybersecurity management. CMMC eMASS serves as the system of record for CMMC Assessment data and reporting.
Assessment framing
The practice of identifying the size, scale, date, time, place, manner, resources, and level of effort associated with the prospective conduct of a CMMC Assessment. This high-level contract framing is performed jointly by the C3PAO and the OSC and is conducted at the beginning of their engagement.
Non-Duplication
A planning step that allows consideration of commonalities between cyber security certifications and/or relevant industry standards when planning a CMMC Assessment to minimize duplication of effort. Not currently in effect.
Plan of Action and Milestones (POA&M)
A document that identifies tasks needing to be accomplished. It details resources required to accomplish the elements of the plan, any milestones in meeting the tasks, and scheduled completion dates for the milestones.
Hashing
The process of using a mathematical algorithm against data to produce a numeric value that is representative of that data.