This article is provided by Kieri Solutions, an Authorized CMMC Third Party Assessment Organization, offering CMMC assessment services. Thanks to them for sharing some of the secret sauce! This article is meant to provide short explanations on topics that are commonly misunderstood (and not performed correctly) by defense contractors. It will be updated over time. Read More
Author: Lia Davis
What is FCI in CMMC and how does it affect scope?
This article was updated in November 2025 to align with the latest CMMC framework details. The Cybersecurity Maturity Model Certification references “FCI”. What is this abbreviation? FCI in CMMC stands for “Federal Contract Information”. FCI is “Information not intended for public release. It is provided by or generated by for the Government under a Read More
CMMC Assessment Timeline – How Long Does the Certification Process Take?
With the 48 CFR CMMC rule published in the Federal Register and now effective on November 10th, 2025, many defense contractors are seeking CMMC L2 C3PAO assessments to be ready to receive new contract awards with the requirements. When these organizations seeking certification (OSCs) meet with their chosen CMMC Third-Party Assessment Organization (C3PAO) and start Read More