How JumpCloud Can Meet CMMC/NIST Requirements

Written by David Worthington on July 6, 2022

Share This Article

There are over 100,000 Defense Industrial Base sector companies and subcontractors, and it’s mandatory to meet the Cybersecurity Maturity Model Certification (CMMC 2.0 Draft) security framework to do business with them. CMMC was created to protect those organizations from frequent and increasing cyberattacks, which seek to obtain Department of Defense (DoD) information. It replaced a self-attestation model, and is moving to third-party certification. 

CMMC encompasses multiple maturity levels that range from “Basic Cybersecurity Hygiene” to “Advanced.” The framework was designed to be flexible enough for small and medium-sized enterprises (SMEs) to cooperate with the DoD, and it’s much more approachable with assistance from JumpCloud. The JumpCloud open directory platform satisfies many of the core CMMC requirements for SMEs.

CMMC’s technical requirements are comprehensive and consist of multiple domains and maturity levels. JumpCloud provides an easy way for federal government suppliers to enable CMMC technical safeguard requirements for their organizations, such as identity management, access control, auditing, multi-factor authentication (MFA), and device management. JumpCloud supports all technical safeguards for CMMC 2.0 Level 1, and over 90% of the safeguards for CMMC 2.0 Level 2. JumpCloud performs and/or facilitates controls for the following domains:

  • Access Control
  • Audit and Accountability
  • Configuration Management
  • Identity and Authentication
  • Media Protection
  • Personnel Security
  • Physical Protection
  • System and Communications Protection
  • System and Information Integrity

We’re in the process of producing public-facing documentation for CMMC, but in the interim, contact your implementation engineer for further assistance with this matter.

Contact JumpCloud

The Defense Industrial Base sector presents JumpCloud users with significant business opportunities with existing DoD contractors. We’re here to help you meet its requirements, using our platform and expertise. Contact JumpCloud’s compliance experts for more information.

David Worthington

I'm the JumpCloud Champion for Product, Security. JumpCloud certified, security analyst, a one-time tech journalist, and former IT director.

Continue Learning with our Newsletter