We Offer CMMC Training

Edwards is a certified Licensed Training Provider (LTP) and Licensed Partner Publishers (LPP) through the Cybersecurity Maturity Model Certification Accreditation Body (CMMC-AB). LTPs provide CMMC-AB certified classes, developed by LPPs. Edwards provides CMMC-AB certified courses to students who are planning on taking CMMC-AB Certification Exams. An individual must attend a corresponding CMMC-AB Certified Class within 6 months to be eligible to take any CMMC-AB Certification Exam.

Edwards is involved in every facet of the CMMC ecosystem; we are also a certified Registered Provider Organization (RPO), Certified Third Party Assessor Organization (C3PAO), and our Cybersecurity Team are Registered Practitioners (RPs). Learn more about how we can help your organization reach compliance.

Meet Our Instructors

JOY BELAND is the CMMC Program Manager for Edwards Performance Solutions, delivering live training for all areas of CMMC, as well as an active participant of the Commercial Cybersecurity Assessment Team. Before joining Edwards, Joy served the MSP community as a cybersecurity education instructor, educating 3,000+ on cybersecurity fundamentals from 2019-2020. In addition to her facilitation experience, Joy owned a successful MSP in Los Angeles for 21 years.

BRIAN HUBBARD brings 35+ years of cybersecurity program management experience to his role as Director of Commercial and Cybersecurity business at Edwards Performance Solutions. Brian leads Edwards’ CMMC initiatives, supporting organizations in their preparation for CMMC assessments, as a CMMC-AB Registered Professional (RP). Prior to joining Edwards, Brian led the contractor team supporting NIST in the development of the “Framework for Improving Critical Infrastructure Cybersecurity” (i.e., the NIST Cybersecurity Framework) in response to Executive Order 13636.

JACOB HORNE is the Chief Security Evangelist for Summit 7 Systems where he specializes in helping customers, partners, and the broader defense industrial base understand how security and process can improve business operations. As a former NSA intelligence analyst and U.S. Navy cryptologic technician, Jacob has over 14 years of experience in offensive and defensive cybersecurity operations. As a civilian, he has led cybersecurity compliance and engineering teams at AT&T, Northrop Grumman, and the NIST Manufacturing Extension Partnership (MEP).

AMIRA ARMOND has 20 years’ experience in operating highly secure military networks with strong and repeatable processes. She is a founder of the C3PAO Stakeholder Forum, an industry group which focuses on standardizing assessment procedures and interpretations among C3PAOs. Amira has been an active voice in CMMC through her blog at cmmcaudit.org, a source of free resources and training for CMMC preparation. Amira is a CMMC Provisional Assessor, CMMC Provisional Instructor, Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), and Project Management Professional (PMP). Students will appreciate her deep understanding of CMMC practices and processes, scoping and boundaries, proving inheritance, and regulatory requirements for CUI.

SARA DEATON is a CMMC Provisional Instructor and Assessor. Her experience spans 30 plus years’ in the commercial and defense industry. She was first introduced to cybersecurity when working as the sole mission assurance engineer on an FMS Weapon System development effort. Since then, Sara has been involved with cybersecurity activities. She has a BS degree in Applied Mathematics and a MS degree in Systems Engineering (Operations Research). Sara has extensive experience as an instructor. She owns and operates a small business called Atomic Wombat Inc, that focuses on CMMC, CMMI, Quality Assurance, and Process Improvement. Atomic Wombat is located in Huntsville, Alabama.

JEFF BALDWIN brings 15+ years of cybersecurity experience in a variety of frameworks such as NIST RMF, DIACAP, NISPOM, DCID 6/3, and NISCAP. Jeff has assessed 150+ systems as a Security Control Assessor and helped 100+ systems achieve Authority to Operate (ATO) under the NIST Risk Management Framework (RMF).

Jeff has 11+ years of teaching experience at accredited state universities as an Adjunct Professor, and also a former Official (ISC)2 Instructor for the CISSP and ISSEP certifications. Jeff is a Doctor of Science in Cybersecurity candidate expecting the completion of his dissertation in late 2021, and he has earned a Master of Science in Information Assurance from Capitol Technology University. His extensive teaching experience allows him to actively connect with students while providing applicable real-world examples.


CMMC-AB Approved Curriculum

Responsive image

CERTIFIED CMMC PROFESSIONAL (CCP) EXAM PREP

This course will enable a participant’s comprehension of the Cybersecurity Maturity Model Certification (CMMC) standard, relevant supporting materials, and applicable legal and regulatory guidance as it pertains to the Department of Defense’s (DoD) Cybersecurity posture. In addition, it will help prepare the participant’s readiness to perform as an effective Certified Assessor for organizations seeking certification (OSC) as CMMC compliant at Level 1, 2, or 3.

Duration

This is a 5 day course.

Objectives

  • Demonstrate an understanding of the DoD supply chain
  • Demonstrate an understanding of and apply concepts around protecting information
  • Demonstrate an understanding of the CMMC Model
  • Demonstrate an understanding of the correlation of practices across the Maturity Model
  • Describe and compare roles and responsibilities across the CMMC-AB ecosystem
  • Define, list, and understand practices associated with specific CMMC domains
  • Identify legal obligations and restrictions of any CMMC-AB credentialed, registered, or certified professionals
  • Understand all aspects and management of conflicts with the Code of Professional Conduct (CoPC)

What's Included

  • 5 days of live instructor led training
  • Hard copy course manual
  • In-class activities
  • In-class workbook and downloadable resources
  • Optional Certified CMMC Professional 4 week Guided Exam Prep Study Group (recommended)

The CCP Exam Prep Exam Prep Course currently has the following course dates available:

  • Monday, October 18, 2021 - Friday, October 22, 2021
  • Monday, November 01, 2021 - Friday, November 05, 2021*
  • Monday, November 15, 2021 - Friday, November 19, 2021
  • Monday, December 6, 2021 - Friday, December 10 2021**

All available courses will take place from 9:00 - 5:00 p.m. EDT.

*This session is planned to take place 9:00 - 5:00 CDT.

**This session is planned to take place in Orlando, FL. Information about venue and accommodations will be provided by 10/01/2021.

Responsive image

CERTIFIED CMMC PROFESSIONAL (CCP) FIELD GUIDE & EXAM PREP MANUAL

Your CMMC certification journey begins here, with the official CMMC-AB curriculum to aid in preparation for the exam. This 650-page, full-color Certified CMMC Professional (CCP) Field Guide & Exam Prep Manual is the most comprehensive study guide available, packed with critical components to reinforce dynamic learning.

In this guide, you will learn the rich depth of the DoD cybersecurity framework, directives, and guideline history; how to expertly navigate all CMMC resource documents, important guidelines, and distinctions in FCI and CUI; as well as incredible detail on each of the 130 practices (including policy, procedures, and plans required for implementation and what to look for in objective evidence). We finish with scoping guidance, the assessment process, exam practice questions, practical tips, pitfalls to avoid, and cross-references to several cybersecurity frameworks and control resources. This comprehensive material can be used to guide you or your organization to prepare for the CMMC Assessment or as an accompanying guide for a CMMC-AB approved training, required prior to sitting for the CCP exam.


CMMC Peer Group - 17 Domains in 17 Weeks

Responsive image

"17 Domains in 17 Weeks" September 2021: Identification & Access Management

17 Domains in 17 Weeks is a facilitated peer group in which Edwards’ Provisional Assessors*, Registered Practitioners, and external SMEs will share their expertise while facilitating and moderating a weekly peer discussion for each Practice (through Level 3) in each Domain. We will talk through challenges, gotchyas, and caveats of implementation per industry, and focus on IMPLEMENTATION rather than what the assessor is looking for.

Objectives

  • What Assessment Objectives do we see the most confusion on?
  • What Practices overlap or complement each other in the same Domain or other Domains (can one implementation check multiple boxes?)
  • Is the Practice implemented with a tool, a procedure, a service? How do we achieve the outcome expected?
  • How does the implementation vary depending on industry or environment?
  • What challenges are implementers experiencing?

This Domain Grouping is based on assessment strategy and focused on interviews and demonstrations with AD admins, IT Directors, etc.

Domains Covered:

  • Access Control (AC)
  • Audit and Accountability (AU)
  • Identification and Authentification (IA)

17 Domains in 17 Weeks is exactly what you and your team need to understand and execute on your CMMC implementation.

Session 1: Identification & Access Management discussion is scheduled to take place on the following dates:

  1. October 20, 2021; 3:30pm EDT
  2. October 27, 2021; 3:30pm EDT
Responsive image

"17 Domains in 17 Weeks" October 2021: Cybersecurity Oversight & Management

17 Domains in 17 Weeks is a facilitated peer group in which Edwards’ Provisional Assessors*, Registered Practitioners, and external SMEs will share their expertise while facilitating and moderating a weekly peer discussion for each Practice (through Level 3) in each Domain. We will talk through challenges, gotchyas, and caveats of implementation per industry, and focus on IMPLEMENTATION rather than what the assessor is looking for.

Duration

Weekly, Thursdays (4 Recurrences)

Objectives

  • What Assessment Objectives do we see the most confusion on?
  • What Practices overlap or complement each other in the same Domain or other Domains (can one implementation check multiple boxes?)
  • Is the Practice implemented with a tool, a procedure, a service? How do we achieve the outcome expected?
  • How does the implementation vary depending on industry or environment?
  • What challenges are implementers experiencing?

This Domain Grouping is based on assessment strategy and focused on interviews and demonstrations with HR, security, and specific IT personnel.

Domains Covered:

  • Awareness and Training (AT)
  • Personnel Security (PS)
  • Physical Protection (PE)
  • Risk Management (RM)
  • Security Assessment (CA)

17 Domains in 17 Weeks is exactly what you and your team need to understand and execute on your CMMC implementation.

Session 2: Cybersecurity Oversight & Management discussion is scheduled to take place on the following dates:

  1. November 3, 2021; 3:30 EDT
  2. November 10, 2021; 3:30 EDT
  3. November 17, 2021; 3:30 EDT
Responsive image

"17 Domains in 17 Weeks" November 2021: Configuration Management

17 Domains in 17 Weeks is a facilitated peer group in which Edwards’ Provisional Assessors*, Registered Practitioners, and external SMEs will share their expertise while facilitating and moderating a weekly peer discussion for each Practice (through Level 3) in each Domain. We will talk through challenges, gotchyas, and caveats of implementation per industry, and focus on IMPLEMENTATION rather than what the assessor is looking for.

Objectives

  • What Assessment Objectives do we see the most confusion on?
  • What Practices overlap or complement each other in the same Domain or other Domains (can one implementation check multiple boxes?)
  • Is the Practice implemented with a tool, a procedure, a service? How do we achieve the outcome expected?
  • How does the implementation vary depending on industry or environment?
  • What challenges are implementers experiencing?

This Domain Grouping is based on assessment strategy and focused on interviews and demonstrations specific to IT personnel.

Domains Covered:

  • Asset Mangement (AM)
  • Configuration Management
  • Maintenance (MA)
  • Media Protection

17 Domains in 17 Weeks is exactly what you and your team need to understand and execute on your CMMC implementation.

Session 3: Configuration Management discussion is scheduled to take place on the following dates:

  1. December 1, 2021; 3:30 EDT
  2. December 8, 2021; 3:30 EDT
  3. December 15, 2021; 3:30 EST
Responsive image

"17 Domains in 17 Weeks" December 2021: Network Defense

17 Domains in 17 Weeks is a facilitated peer group in which Edwards’ Provisional Assessors*, Registered Practitioners, and external SMEs will share their expertise while facilitating and moderating a weekly peer discussion for each Practice (through Level 3) in each Domain. We will talk through challenges, gotchyas, and caveats of implementation per industry, and focus on IMPLEMENTATION rather than what the assessor is looking for.

Objectives

  • What Assessment Objectives do we see the most confusion on?
  • What Practices overlap or complement each other in the same Domain or other Domains (can one implementation check multiple boxes?)
  • Is the Practice implemented with a tool, a procedure, a service? How do we achieve the outcome expected?
  • How does the implementation vary depending on industry or environment?
  • What challenges are implementers experiencing?

This Domain Grouping is based on assessment strategy and focused on interviews and demonstrations within the organizations SOX with IT Security personnel.

Domains Covered:

  • Incident Response (IR)
  • Recovery (RE)
  • Situational Awareness (SA)
  • Systems and Communications Protection (SC)
  • System and Information Integrity (SI)

17 Domains in 17 Weeks is exactly what you and your team need to understand and execute on your CMMC implementation.

Session 4: Network Defense discussion is scheduled to take place on the following dates:

  1. December 22, 2021; 3:30 EST
  2. December 29, 2021; 3:30 EST
  3. January 5, 2021; 3:30 EST
  4. January 12, 2021; 3:30 EST
  5. January 19, 2021; 3:30 EST

CMMC-AB Certification Training (Pending Approval)

Responsive image

Certified CMMC Assessor (CCA-1) Level 1 Exam Prep (Pending CMMC-AB Approval)

This course enables a participant’s comprehension of the Cybersecurity Maturity Model Certification (CMMC) standard, relevant supporting materials, and applicable legal and regulatory guidance as it pertains to the Department of Defense’s (DoD) Cybersecurity posture. In addition, it will help prepare a participant’s readiness to perform as an effective Certified Assessor for organizations seeking certification (OSC) as CMMC compliant Level 1.

Duration

This is a 4 day course.

Objectives

  • Learn strategies to guide and support OSCs at Maturity Level 1
  • Pinpoint assessment preparation and execution at Maturity Level 1
  • Identify and describe CMMC reference/source documents in a detailed manner
  • Define and describe detailed assessment methodology
  • Describe ethics of assessors
  • Define in detail Maturity Level 1 practices (validation and criteria)

What's Included

  • 4 days of live instructor led training
  • Hard copy course manual
  • In-class activities
  • In-class workbook and downloadable resources
  • Optional Certified CMMC Assessor Level 1, 4 week Guided Exam Prep Study Group (recommended)

Prerquisites

Certified CMMC Assessor Level 1 course participants are not permitted to take the associated Certified CMMC Assessor Level 1 exam until they have completed a Certified CMMC Professional course and exam.

The CCA-1 Exam Prep Exam Prep Course currently has the following course dates available:

  • Tuesday, November 30, 2021 - Friday, December 3, 2021
  • Monday, December 13, 2021 - Thursday, December 16, 2021

All available courses will take place from 9:00 - 5:00 p.m. EDT.

Responsive image

CERTIFIED CMMC ASSESSOR (CCA-3) LEVEL 3 EXAM PREP (PENDING CMMC-AB APPROVAL)

This course enables a participant’s comprehension of the Cybersecurity Maturity Model Certification (CMMC) standard, relevant supporting materials, and applicable legal and regulatory guidance as it pertains to the Department of Defense’s (DoD) Cybersecurity posture. In addition, it will help prepare a participant’s readiness to perform as an effective Certified Assessor for organizations seeking certification (OSC) as CMMC compliant Level 1.

Duration

This is a 5 day course.

Objectives

  • Learn how to perform, manage, and score an assessment in accordance with the established methods and requirements of NIST SP 800-171 DoD Assessment Methodology, Version 1.2.1 and NIST Special Publication 800-30
  • Pinpoint assessment preparation and execution at Levels 2 and 3
  • Demonstrate foundational knowledge with respect to CUI sources, categorizations, marking, and handling
  • Define the content and execution of the Delta 20 Practices at Levels 2 and 3

What's Included

  • 5 days of live instructor led training
  • Hard copy course manual
  • In-class activities
  • In-class workbook and downloadable resources
  • Optional Certified CMMC Assessor Level 3, 4 week Guided Exam Prep Study Group (recommended)

Prerquisites

Certified CMMC Assessor Level 3 course participants are not permitted to take the associated Certified CMMC Assessor Level 3 exam, until they have completed a Certified CMMC Professional course and exam, as well as the Certified CMMC Assessor Level 1 course and exam.

The CCA-3 Exam Prep Exam Prep Course currently has the following course dates available:

  • Monday, February 28 2022 - Friday, March 4 2022

All available courses will take place from 9:00 - 5:00 p.m. EDT.


CMMC Introductory Courses

Responsive image

EXECUTIVE OVERVIEW – CYBERSECURITY MATURITY MODEL CERTIFICATION (CMMC)

For the busy executive that needs a high-level overview of what CMMC means to your organization. This course is a maximum four-hour virtual instructor-led introduction to the CMMC, its ecosystem, and the reasoning behind all organizations in the DIB sector needing to obtain a certified level of cybersecurity maturity in order to bid on DoD contracts.

Geared towards organizations that will seek certification, it examines the CMMC-prescribed Level 1 maturity cybersecurity practices, their potential impact on your organization and the resources needed to successfully implement, as well as a brief walkthrough of the assessment process. Instructors will take live Q&A, ensuring you walk away well-armed with what CMMC will mean for your growth in the DIB sector.

Duration

This is a 4 hour course.

Objectives

  • Articulate the importance of the CMMC Model to a business
  • Explain how the CMMC Model impacts organizations
  • Define the CMMC Model
  • Identify an organization’s expected CMMC Model level, stakeholders, and path to certification

What's Included

  • Workbook
  • Interaction with two senior CMMC instructor
  • Certificate of Completion

Contact us to register your group for a private session.

Responsive image

CMMC FUNDAMENTALS – CYBERSECURITY MATURITY MODEL CERTIFICATION (CMMC)

CMMC Fundamentals offers a full day (8 hour) virtual instructor-lead training tailored for organizations seeking certification (OSC). Beyond an overview, this course explores how an organization should prepare for a CMMC audit, the necessary documentation, plans, and policies, how to identify and inform organizational and how assessors will conduct their audit. Instructors will take live Q&A, ensuring you walk away well-armed with what CMMC will mean for your growth in the DIB sector.

Please contact us to register your team for a private session.

Duration

This is a 1 day course.

Objectives

  • Articulate the importance of the CMMC Model to a business
  • Explain how the CMMC Model impacts organizations
  • Define the CMMC Model
  • Identify an organization’s expected CMMC Model level, stakeholders, and path to certification
  • Define DoD’s proper handling of FCI, CUI, CTI, and ECI
  • Provide an overview of processes and practices required for each maturity level
  • Describe what CMMC Assessors will expect for each Maturity Certification Level
  • Outline best next steps to take to prepare for an assessment

What's Included

  • Workbook
  • Interaction with two senior CMMC instructor
  • Certificate of Completion

Looking for CMMC Assessment support?

To continue work with the government, companies must be certified at an appropriate level of maturity against the CMMC, but many companies need help determining where to start. Our quick look approach is designed to be affordable and provide you with exactly what you need to do in preparation for a CMMC audit, through four steps. At this time, Edwards offers a Level 1 and Level 3 Quick Look assessment with varying levels of consulting support.

CMMC Compliance & Certification

Edwards plays a role in nearly every aspect of the CMMC ecosystem — training and education, audits, and certification. Edwards supports Organizations Seeking Certification (OSC) as a Registered Provider Organization (RPO) and Certified Third Party Assessment Organization (C3PAO), providing CMMC-AB approved assessments, consulting, and audit preparation through our proprietary Quick Look Assessments, as well as training.

Still have CMMC questions?

To help OSCs and those looking to better understand the CMMC ecosystem, Edwards provides a list of FAQs. Topics include CMMC 101, Consulting & Audits, and Training & Education. Contact us at Info@EdwPS.com with any specific queries.

WANT MORE INFORMATION ABOUT ELEARNING?

Taking 20+ years of training excellence, Edwards now offers the same expertise in an online environment. We offer a variety of virtual instructor led training (VILT), pre-recorded learning, and eLearning courses. Our goal is to offer flexible learning at the click of a button – providing an accessible way to boost your career. Check out our upcoming courses, with more coming soon!