The initial testing or evaluation of the controls in an information system or an organization to determine the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting the CMMC security requirements for the organization.
Source: DoD Assessment Methodology
« Back to Glossary Index
