Forum Discussion
CMMC Control Mapping
Hi! Is there a map for NIST 800-53 or 800-171 or any of the CMMC levels available that I can use to show which controls my Microsoft 365 G5 usage maps to for compliance auditing?
chriskeeling I'm a fan of the free spreadsheet/matrix that ComplianceForge put out to map CMMC controls: http://examples.complianceforge.com/cmmc/ComplianceForge%20-%20Cybersecurity%20Maturity%20Model%20Certification%20(CMMC)%20v1.02%20Requirements%20Matrix.xlsx
MichaelKing Thanks! That's a fantastic spreadsheet for comparing the requirements of the different compliance models. However, it doesn't show how Microsoft 365 G5 provides services that map to any of the controls in a way that can easily be presented to an auditor or included in an internal document for tools compliance.
