Page 1 of 1
CMMC Readiness Survey
Prepared by Gilead Nexus
Thank you for taking the time to complete this brief survey. Your responses will help us understand your current practices and challenges in achieving CMMC compliance and managing your System Security Plan (SSP).
Section 1: Current Practices
1. Can you describe your current process for developing a System Security Plan (SSP) in alignment with the CMMC 2.0 self-assessment requirements?
2. What aspects of achieving compliance with CMMC Level 1 requirements do you find most challenging?
3. What measures do you currently have in place to protect Federal Contract Information (FCI) and/or Controlled Unclassified Information (CUI) within your system?
4. What methods or approaches have you used in the past to achieve cybersecurity compliance?
5. Approximately how much time and financial investment have you dedicated—or been quoted—to meet CMMC compliance requirements?
6. On a scale of 1 to 10 (with 10 being the highest), how important is it for your organization to document its security posture in a formal System Security Plan (SSP)?
7. Is your organization prepared to submit and update a System Security Plan (SSP) on an annual basis?
8. Would your organization be willing to invest $3000 in an automated CMMC compliant System Security Plan (SSP) with supporting policies and procedures to support your contract proposal?
Submit
