Control Public Information (AC.L1-3.1.22) 

CMMC Level 1 Practice Overviews 

In this series of videos, our friends at Optic Cyber Solutions give a nice high level overview of each of the CMMC Level 1 practices. 

Control Public Information (AC.L1-3.1.22) 

While leveraging business needs and balancing cybersecurity requirements can be challenging when it comes to sharing information and data, it’s important to make sure that FCI and CUI are not being inappropriately shared.  

Next up, Tom Conkle and Kelly Hood break down the Control Public Information Practice (CMMC AC.L1-3.1.22 / NIST SP 800-171 r2 - 3.1.22) and discuss the importance of keeping sensitive data off of public systems.  

“Control information posted or processed on publicly accessible information systems.”