Coalfire Federal Among First C3PAOs Authorized to Perform CMMC Audits Leading FedRAMP Third-Party Assessor and Defense Industry Cybersecurity Advisor Ideally Suited to Support CMMC Launch News provided by Share this article Share this article WASHINGTON, Dec. 22, 2020 /PRNewswire/ -- Coalfire Federal, a leading cybersecurity services provider to the federal government and Defense Industrial Base (DIB), today announced its selection by the Cybersecurity Maturity Model Certification Accreditation Body (CMMC-AB) to become one of the first firms authorized to perform CMMC audits. The CMMC framework was created to address the ongoing theft and unauthorized access to Controlled Unclassified Information (CUI) by foreign adversaries through the enforcement of good cyber hygiene and best practices. The CMMC framework is a set of mandatory cybersecurity requirements that all contractors in the DoD supply chain must implement and then have verified by an independent CMMC Third-Party Assessment Organization (C3PAO). Five certification levels define the minimum security posture or maturity an organization must achieve as determined by the sensitivity of the information they handle. Organizations handling CUI must be certified at CMMC Level 3 or higher.