Cybersecurity Maturity Model Certification (CMMC)

Featured CMMC Solution Providers by Domain

CMMC organizes cybersecurity processes and best practices into 3 maturity levels and 14 capability domains based on requirements in FAR Clause 52.204-21, NIST Special Publication 800-171, and NIST Special Publication 800-172. The 3 Maturity Levels of the CMMC Framework are:

Level 1 Foundational Security: FAR Clause 52.204-21 17 practices for basic safeguarding of FCI
Level 2 Advanced Security: Aligns with NIST 800-171's 110 controls and security requirements
Level 3 Expert Security: Expected to align with NIST 800-172's enhanced security requirements

Explore CMMC capability domains and compliant technologies from our solution providers below.

Search By:

AT - Awareness & Training ✕ (19)
AC - Access Control ✕ (43)
AU - Audit & Accountability ✕ (40)
CA - Security Assessment ✕ (30)
CM - Configuration Management ✕ (35)
IA - Identification & Authentication ✕ (35)
IR - Incident Response ✕ (33)
MA - Maintenance ✕ (19)
MP - Media Protection ✕ (23)
PE - Physical Protection ✕ (8)
PS - Personnel Security ✕ (9)
RA - Risk Assessment ✕ (33)
SC - System & Communications Protection ✕ (37)
SI - System & Information Integrity ✕ (35)

1Kosmos ✕ (1)
APS Global ✕ (1)
Appgate ✕ (1)
Archer ✕ (4)
Armis ✕ (10)
Axonius Federal Systems ✕ (13)
Axonius Federal Systems LLC ✕ (1)
BeyondTrust ✕ (6)
Blancco Technology Group ✕ (2)
BlueVoyant ✕ (1)
Caveonix ✕ (1)
Cloudfit Software ✕ (4)
Cyturus Technologies ✕ (14)
DataLocker ✕ (5)
Delinea ✕ (9)
EchoMark ✕ (2)
Entrust ✕ (9)
ExtraHop ✕ (8)
F5 ✕ (8)
Forcepoint ✕ (7)
Forescout ✕ (11)
Fornetix ✕ (5)
Fortinet Federal ✕ (12)
Fortress ✕ (4)
Gigamon ✕ (8)
Hypori ✕ (1)
Infoblox ✕ (7)
Keeper Security ✕ (1)
Kelyn Technologies ✕ (1)
Kion ✕ (2)
Lifeline Data Centers ✕ (14)
Lookout ✕ (5)
Micro Focus ✕ (12)
Microsoft ✕ (11)
Netwrix Corporation ✕ (5)
Okta ✕ (2)
OpenText ✕ (12)
Palo Alto Networks ✕ (10)
Paramify ✕ (3)
Planet Technologies ✕ (2)
Proofpoint ✕ (10)
QA ✕ (1)
Qmulos ✕ (6)
Quantum ✕ (1)
Quzara ✕ (9)
RSA ✕ (1)
Rapid7 ✕ (12)
RegScale ✕ (3)
Rubrik ✕ (4)
SMX ✕ (1)
Salesforce ✕ (3)
SectorNet ✕ (1)
Sicura ✕ (7)
Sophos ✕ (12)
SpyCloud ✕ (5)
Tanium ✕ (4)
Tenable ✕ (14)
Thales Trusted Cyber Technologies ✕ (13)
Trend Micro ✕ (8)
Trustwave ✕ (5)
VERITAS ✕ (5)
VMware ✕ (6)
WinMagic ✕ (7)
Wiz ✕ (2)
Yubico ✕ (1)
Zimperium ✕ (8)
Zscaler ✕ (11)
archTIS ✕ (3)
kiteworks ✕ (1)

Carahsoft’s Portfolio of CMMC Products & Services

AT - Awareness & Training

AC - Access Control

AU - Audit & Accountability

CA - Security Assessment

CM - Configuration Management

IA - Identification & Authentication

IR - Incident Response

MA - Maintenance

MP - Media Protection

PE - Physical Protection

PS - Personnel Security

RA - Risk Assessment

SC - System & Communications Protection

SI - System & Information Integrity

CMMC Sales Desk at Carahsoft

Carahsoft is the trusted distributor for the DIB and CMMC. Our Subject Matter Experts can help identify the right solutions for your agency based on unique challenges within your IT environment.

Explore the Carahsoft CMMC Sales Desk to learn how we can help you achieve CMMC compliance and embrace this critical National Security mission.

Military DC.jpg

Governance, Risk and Compliance

Governance, Risk and Compliance (GRC) is critical for Defense agencies to fulfill the security requirements established by the CMMC. Explore our vendors that deliver GRC platforms aligned with the CMMC framework. .

Managed Security Service Providers

Managed Security Service Providers (MSSPs) support Federal agencies with network security support that ensures CMMC compliance. Learn more about our MSSP partners that meet CMMC requirements.

Pentagon

CMMC Framework Explained

CMMC is the cybersecurity framework used by the DoD to measure a suppliers’ cybersecurity maturity and ensure protection of CUI residing on contractor networks. The CMMC framework includes an assessment requirement that verifies the execution of security practices by maturity level and standardizes implementation across the DIB.

Trending Topics: CMMC

Greymatter.io Whitepaper

Zero Trust Networking Made Mission Ready

Greymatter.io’s Zero Trust Networking Made Mission Ready whitepaper outlines how its platform enables secure service orchestration for government organizations through ...

Greymatter.io Whitepaper

Mission-Ready Zero Trust for Cloud, Hybrid, and Edge Networks

Greymatter.io's Mission-Ready Zero Trust for Cloud, Hybrid, and Edge Networks whitepaper details how its platform delivers mission-ready Zero Trust connectivity for civilian, ...

CodeLock Resources

CodeLock Compliance Control Map

This CodeLock resource goes in depth about their features and what each feature covers. Coverage includes different SOC 2, FedRAMP, CMMC and SSDF components.

CodeLock Whitepaper

SOC 2 Compliance with CodeLock

This whitepaper goes into detail about what SOC 2 is and how you can achieve

CodeLock Whitepaper

Achieving NIST SSDF Compliance with CodeLock

This whitepaper goes into detail about what FedRAMP is and how you can achieve compliance using CodeLock.

CodeLock Whitepaper

Achieving FedRAMP Compliance with CodeLock

This whitepaper goes into detail of what FedRAMP is and how you can achieve compliance using CodeLock.

CodeLock Whitepaper

Achieving CMMC Compliance with CodeLock

This whitepaper goes into detail about what FedRAMP is and how you can achieve compliance using CodeLock.

ISI Enterprises Blog

CMMC Command Center

Explore this all-in-one CMMC resource hub for every stage of your compliance journey. This is an all-in-one resource hub covering CMMC regardless of where you are in your ...

ISI Enterprises Blog

CMMC Readiness Signal

Quickly assess your current CMMC compliance posture and gain the insights you need to make a smooth transition to compliance and secure your future success.

May 13, 2025

ATX Defense and Carahsoft Partner to Deliver CMMC-Compliant Cybersecurity Solutions to the Public Sector

April 29, 2025

Greymatter.io’s Intelligent Service Mesh Solutions Now Available Through Carahsoft's SEWP V and ITES Contracts

April 22, 2025

Planet Technologies and Carahsoft Partner to Bring Optimization of Microsoft Solutions to Government Agencies

May 21, 2024

SolCyber and Carahsoft Forge Alliance to Expedite CMMC Compliance for Defense Contractors

January 14, 2024

Carahsoft, Cyturus Technologies, and Gold Comet: CMMC 2.0 Compliance Partnership

September 28, 2023

Carahsoft and Cyturus Announce Partnership with The Cyber AB to offer CMMC Compliance Readiness Tool to Registered Practitioner Organizations (RPOs)

May 23, 2023

Carahsoft Launches CMMC Sales Desk to Enable Defense Industrial Base With CMMC Compliance

December 14, 2021

Blancco’s Data Erasure Solutions Empower DoD Contractor Compliance with CMMC 2.0 Media Protection Requirement

March 16, 2021

Gigamon Names Carahsoft Distributor of the Year for 2020

Report: CMMC: Securing the Defense Industrial Base

As the Defense Department moves forward on its cybersecurity requirements for contractors, a growing ecosystem of technology providers is helping companies navigate the journey to certification.

Federal Report Supply Chain/CMMC

Learn from leaders at DoD, NIST, NTIA, and CISA on how agencies are reevaluating their security posture. Featuring additional insights from technology leaders at Trustwave, Qmulos, Zscaler, Solarwinds, and MicroFocus Government Solutions.

Managing Cyber Exposure in Law Enforcement

Michael Rothschild, Senior Director of Marketing for Tenable, shares advice for protecting data and resources as the cybercrime landscape expands and evolves.