Certified Professional CMMC Training (CCP)

The CMMC Certified Professional™ (CCP™) is the foundational certification for anyone seeking to work within the implementation and assessment ecosystem of the US Department of War’s (DoW) Cybersecurity Maturity Model Certification (CMMC) program. It validates that you are ready to help organizations achieve assessment-ready cybersecurity programs or participate in a CMMC Assessment Team during official CMMC assessments. Plus, CCP is the required first step toward becoming a CCA, providing a clear advancement pathway into assessment and higher-level consulting roles.

Certified Professional CMMC Training (CCP) Benefits

• Important Information

  • Each student will be responsible for purchasing the CCP Exam through ISACA. Using the following link, you will click “Register” to purchase your respective exam.
    • CCP: https://www.isaca.org/credentialing/ccp
  • Learners must confirm they have completed the mandatory training prior to registering for the exam. ISACA validates this confirmation against the training data submitted by your training provider, to ensure a valid application.
  • https://www.isaca.org/-/media/files/isacadp/project/isaca/certification/exam-candidate-guides/cca-ccp_exam_candidates_guide.pdf
  • After passing the exam you will submit your application with ISACA for the certification and will pay the required $200 fee at that time.

• In this CMMC Certification Training Course, you will learn how to:

  • Identify the threats to the defense supply chain and the established regulations and standards for managing the risk.
  • Identify the sensitive information that needs to be protected within the defense supply chain and how to manage it.
  • Describe how the CMMC Model ensures compliance with federal acquisition regulations.
  • Identify the responsibilities of the CMMC Certified  Professional, including appropriate ethical behavior.
  • Establish the Certification and Assessment scope boundaries for evaluating the systems that protect regulated information.
  • Prepare the OSC (Organizations Seeking Certification) for an Assessment by evaluating readiness.
  • Use the CMMC Assessment Guides to determine and assess the Evidence for practices.
  • Implement and evaluate practices required to meet CMMC Level 1.
  • Identify the practices required to meet CMMC Level 2.

• Who Should Attend:

  • DoW Suppliers Preparing For CMMC Compliance
  • It/Security Managers at DIB Companies
  • Grc/Compliance Leads Driving Cmmc Programs
  • Aspiring CMMC Assessors
  • Early-Career Professionals Entering DIB Cyber Compliance

• CMMC Certification Training Prerequisites

  To ensure success on this course, you should have some foundational education or experience in cybersecurity. Therefore, ISACA and Cyber AB have established prerequisites for those who wish to apply for CCP certification, such as: 

  • Favorable background checks. Additional citizenship and clearance credentials are also required to perform higher-level duties, such as participating as an ML-2 (Maturity Level 2) assessment team member. 
  • Have college degree in a cyber or information technical field, or 2+ years of related education experience, or 2+ years of related experience (including military) in a cyber, information technology, or assessment field.

CMMC Certification Training Outline

Lesson 1:  Managing Risk within the Defense Supply Chain

Topic A:Identify Threats to the Defense Supply Chain 

Topic B:Identify Regulatory Responses against Threats 

Lesson 2: Handling Sensitive Information

Topic A: Identify Sensitive Information

Topic B: Manage Sensitive Information

Lesson 3: Ensuring Compliance through CMMC

Topic A: Describe the CMMC Model Architecture

Topic B: Define the CMMC Program and Its Ecosystem

Topic C: Define Self-Assessments

Lesson 4: Performing CCP Responsibilities

Topic A: Identify Responsibilities of the CCP

Topic B: Demonstrate Appropriate Ethics and Behavior

Lesson 5: Scoping Certification and Assessment Boundaries

Topic A: Use the CMMC Assessment Scope Documentation

Topic B: Get Oriented to the OSC Environment

Topic C: Determine How Sensitive Information Moves

Topic D: Identify Systems in Scope

Topic E: Limit Scope

Lesson 6: Preparing the OSC

Topic A: Foster a Mature Cybersecurity Culture

Topic B: Evaluate Readiness

Lesson 7: Determining and Assessing Evidence

Topic A: Determine Evidence

Topic B: Assess the Practices Using the CMMC Assessment Guides

Lesson 8: Implementing and Evaluating Level 1

Topic A: Identify CMMC Level 1 Domains and Practices

Topic B: Perform a CMMC Level 1 Gap Analysis

Topic C: Assess CMMC Level 1 Practices

Lesson 9: Identifying Level 2 Practices

Topic A: Identify CMMC Level 2 Practices 

Lesson 10: Working through an Assessment

Topic A: Identify Assessment Roles and Responsibilities

Topic B: Plan and Prepare the Assessment

Topic C: Conduct the Assessment

Topic D: Report on the Assessment Results

Topic E: Conduct the CMMC POA&M (Plan of Action and Milestones) Close-Out Assessment

CMMC Certification Training Outline Appendixes

Appendix A: Evidence Collection Approach for CMMC Level 1 Practices

Appendix B: Additional Documentation for CCPs (Certified CMMC Professionals)

Appendix C: Mapping Course Content to the CCP Exam