After being authorized in December as the new CMMC Assessor and Instructor Certification Organization (CAICO) for the Cybersecurity Maturity Model Certification (CMMC) program, CAICO services fully transitioned to ISACA this month.
CMMC, one of the largest cybersecurity assessment programs in the world, verifies that information systems used by contractors across the Defense Industrial Base to process, transmit or store sensitive data are compliant with mandatory information security requirements.
As ISACA CEO Erik Prusch recently wrote, “As the CAICO, ISACA will manage the training, examination and professional certification for individuals throughout the CMMC ecosystem. This designation is reflective of the immense trust placed in our association to play a leading role in strengthening the cybersecurity workforce by helping members of the Defense Industrial Base secure some of the most sensitive information on the planet.”
ISACA was authorized as CAICO by CyberAB, the official CMMC accreditation body. Below are some answers to frequently asked questions regarding ISACA’s new role:
Q: How can I set up an ISACA account?
A: An account was set up for you using the email address associated with your CyberAB account. When you log in, simply click “reset password” to set up a new password.
Q: For those who now have two accounts because they used different email addresses for ISACA and Cyber AB, how can those be reconciled?
Please visit support.isaca.org to contact ISACA’s Customer Experience Center and reconcile your accounts.
Q: Can the CPE activities that we submit for the other ISACA certification be used for the CCP and/or CCA certifications?
A: Yes, if the CPE activity fulfills both an ISACA certification and CCP/CCA you’re able to apply those CPEs to both certifications.
Q: Moving forward, who will be handling Tier 3 Investigations for CCPs/CCAs: ISACA (CAICO) or CyberAB?
A: CyberAB will continue to run point on Tier 3 Investigations for CCPs and CCAs.
Q: How/where can I start the background check process?
A: The background check process starts after you’ve completed CCP training, passed the CCP exam and applied for the certification. During the application process, ISACA will validate your experience and then send your information over to CyberAB so the background check can start.
Q: Are the exams conducted in person or remotely?
A: Both options are available.
See more information about ISACA’s role as CAICO, including a full set of FAQs, here.