0
1.0.0
Xanadu, Washington DC
The CMMC Accelerator, built on ServiceNow’s Continous Authorization and GRC Monitoring Policy and Compliance Management Module, automates CMMC Level 2 assessments for DoD contractors. It enables compliance managers to assign questionnaires, monitor responses, and track compliance. Compliance Managers and stakeholders can view results and compliance status through a user-friendly interface. The app automates assessments, requiring C3PAO validation. Available on the ServiceNow store, it includes NIST 800-171 content and uses the NIST Risk Management Framework (RMF) and POA&M templates for DoD submission.
- Comprehensive Pre-Built Content: Includes the complete CMMC 2.0 Authority Document with all 110 controls and 320 objectives, specific questionnaires tailored to each of the 320 objectives, and suggested evidence required for each objective, offering insights from the perspective of a certified CCA assessor to ensure compliance readiness.
- CMMC Boundary Management: Define and manage CMMC Bounday to include CUI assets to align with CMMC 2.0 requirements.
- Control Implementation: Simplify the deployment and management of CMMC controls.
- Issue Tracking: Automatically create issues for failed controls to track remediation process.
- Audit Preparation and Management: Automate CMMC assessment workflows for Level 1 and Level 2 certifications.
- Plans of Action and Milestones (POA&M): Develop, track, and manage corrective action plans to close compliance gaps.
- Artifact Management: Create SSP (System Security Plan) and other related artifacts for CMMC Level 2 assessment.
Initial Release.
ServiceNow IRM PRO with CAM license is required.
Plugins (required pre-installation):
- GRC: Continuous Authorization & Monitoring
- GRC: Policy module Dependencies
- GRC: GRC Profile Dependencies