CMMC 2.0 Self-Assessment

Evaluate your organization's compliance with CMMC Level 1 and Level 2 requirements based on NIST SP 800-171 Rev 2.

Organization Information

Target CMMC Level

Level 1 — Foundational

FCI Protection

17

Practices (FAR 52.204-21)

Level 2 — Advanced

CUI Protection

110

Practices (NIST 800-171)

How This Assessment Works

This tool follows the design approach of the DOE's C2M2 assessment, adapted for CMMC 2.0 compliance. For each of the 110 NIST SP 800-171 security requirements, you will select an implementation status:

MET Practice is fully implemented and operational
PARTIALLY MET Implemented with recognized gaps
NOT MET Practice is not implemented
N/A Not applicable to this system

Your SPRS score (Supplier Performance Risk System) will be calculated automatically. SPRS scores range from 110 (all controls met) to -203 (no controls met). A score of 110 is required for full Level 2 compliance.

Assessment Results

--
SPRS Score
0
Met
0
Partially Met
0
Not Met

Level 1 — Foundational (17 Practices)

0 / 17 met Not Achieved

Level 2 — Advanced (110 Practices)

0 / 110 met Not Achieved

Implementation Status by Domain

Stacked bar chart showing compliance distribution across all 14 CMMC domains

Met
Partially Met
Not Met
N/A
Not Assessed