• SecurePath for Auto Dealers
  • Services
    • SOC Reporting Services
      • SOC 2® Readiness Assessment
      • SOC 2® Reports
      • SOC 3® Reports
      • SOC for Cybersecurity® Reports
    • IT Advisory Services
      • IT Vulnerability Assessment
      • Network Penetration Testing
      • Privileged Access Management
      • Social Engineering Testing
      • Virtual CISO (vCISO)
      • Written Information Security Program (“WISP”)
      • IT General Controls Audit & Compliance
    • IT Government Compliance
      • CMMC Cybersecurity Services & Compliance
      • DFARS Compliance
      • FTC Safeguards Compliance
  • Industries
    • Financial Services
    • Government
    • Auto Dealerships
    • Enterprise
  • Blog
  • About Us
    • Meet The Team
    • Jobs
  • Contact Us

Call us today! 844-OCD-TECH

Find our Location
OCD TechOCD Tech
  • SecurePath for Auto Dealers
  • Services
    • SOC Reporting Services
      • SOC 2® Readiness Assessment
      • SOC 2® Reports
      • SOC 3® Reports
      • SOC for Cybersecurity® Reports
    • IT Advisory Services
      • IT Vulnerability Assessment
      • Network Penetration Testing
      • Privileged Access Management
      • Social Engineering Testing
      • Virtual CISO (vCISO)
      • Written Information Security Program (“WISP”)
      • IT General Controls Audit & Compliance
    • IT Government Compliance
      • CMMC Cybersecurity Services & Compliance
      • DFARS Compliance
      • FTC Safeguards Compliance
  • Industries
    • Financial Services
    • Government
    • Auto Dealerships
    • Enterprise
  • Blog
  • About Us
    • Meet The Team
    • Jobs
  • Contact Us
CAICO: A New, and Under-Explored, Layer to CMMC Accreditation

CAICO: A New, and Under-Explored, Layer to CMMC Accreditation

January 12, 2021 Posted by Kate Upton CMMC

A recent update to the DoD CMMC website’s Frequently Asked Questions (FAQs) page revealed a new layer to the CMMC accreditation process: The CAICO. The CAICO, or CMMC Assessors and Instructors Certification Organization, will serve as the administrative body for individuals seeking to assess organizations for CMMC compliance, and those individuals seeking to become instructors. Logically, this would leave the CMMC- AB with the task of approving organizations intending to become a C3PAO. This segregation of duties is a new development to the ever-changing landscape of CMMC administration. Just last year, the CMMC-AB certified the first batch of CMMC assessors and continues to certify Registered Practitioners. Moving forward, it seems that this duty will be owned by the CAICO, though it is unclear.

The change to the FAQ section without an accompanying statement for clarity by the CMMC-AB is sure to create more questions for the DIB, particularly individuals hoping to be certified assessors and instructors. With another CMMC Town Hall scheduled for 26 January, the CMMC-AB will hopefully shed more light and provide instruction to the many individuals who have paid fees to become assessors and instructors.

Have a CMMC Compliance Question? Contact Us. We Can Help!

Tags: CMMC CertificationCMMC Readinessnist 800-171
Share
0
Kate Upton

About Kate Upton

Kate Upton is the IT Government Compliance Team Lead at OCD-Tech. Kate has been with the firm since May 2019. Before joining the firm, Kate received her Bachelor’s degree in Political Science & Legal Studies from the University of Maine and went on to earn a Master’s degree from Northeastern University in Strategic Intelligence. She dedicates her time at the firm to meeting the unique compliance needs of clients in the Defense Industrial Base with projects including CMMC, NIST 800-171, NIST 800-53, and DFARS rules. Kate lives in Portland, Maine with her dog Lucy.

You also might be interested in

The CMMC DFARS Interim Rule Explained

The CMMC DFARS Interim Rule Explained

Jan 18, 2021

On September 30, 2020, the DoD revealed a new set of proposed clauses for the Defense Federal Acquisition Regulation Supplement-known as the DFARS-in an interim rule (DFARS Case 2019-D041).

DoD Rulemaking Update and Impact on Defense Contractors

DoD Rulemaking Update and Impact on Defense Contractors

Jan 18, 2023

DoD released its long-awaited Rulemaking Agenda for CMMC 2.0 last[...]

The DFARS Deadline Has Passed

The DFARS Deadline Has Passed

Jan 3, 2018

Did you miss the DFARS cybersecurity deadline of December 31,[...]

Find us on

Contact Us

We're not around right now. But you can send us an email and we'll get back to you, asap.

Send Message
OCD Tech logo Audit. Security. Assurance.

IT Audit | Cybersecurity | IT Assurance | IT Security Consultants – OCD Tech is a technology consulting firm serving the IT security and consulting needs of businesses in Boston (MA), Braintree (MA) and across New England. We primarily serve Fortune 500 companies including auto dealers, financial institutions, higher education, government contractors, and not-for-profit organizations with SOC 2 reporting, CMMC readiness, IT Security Audits, Penetration Testing and Vulnerability Assessments. We also provide dark web monitoring, DFARS compliance, and IT general controls review.

Contact Info

  • OCD Tech
  • 25 BHOP, Suite 407, Braintree MA, 02184
  • 844-623-8324
  • https://ocd-tech.com

Follow Us

Videos

Check Out the Latest Videos From OCD Tech!

Services

SOC Reporting Services
– SOC 2 ® Readiness Assessment
– SOC 2 ®
– SOC 3 ®
– SOC for Cybersecurity ®

IT Advisory Services
– IT Vulnerability Assessment
– Penetration Testing
– Privileged Access Management
– Social Engineering
– WISP
– General IT Controls Review

IT Government Compliance Services
– CMMC
– DFARS Compliance
– FTC Safeguards vCISO

Industries

  • Financial Services
  • Government
  • Enterprise
  • Auto Dealerships

© 2025 — OCD Tech: IT Audit - Cybersecurity - IT Assurance

  • OCD Tech
  • About Us
  • Contact Us
Prev Next