INFOSEC Webinar, Hosted by the U.S. Corps of Engineers, HQ Contracting

Active

Contract Opportunity

Federal Organization Issuing Notice: U.S. Army Corps of Engineers (USACE), Headquarters, Directorate of Contracting

Description: The Cybersecurity Maturity Model Certification (CMMC) program has reshaped how the Department of War (DOW) ensures the protection of Federal Contract Information (FCI) and Controlled Unclassified Information (CUI) across the Defense Industrial Base (DIB). The CMMC phased implementation began on November 10, 2025, and introduced CMMC Level 1 and Level 2 self-assessment requirements in applicable solicitations and contracts. As a result, it is important for USACE to continue engaging with industry to clearly communicate what has changed, what requirements are now in effect, and how these changes impact both current and future contract actions.

Please join the U.S. Army Corps of Engineers (USACE) Headquarters, Directorate of Contracting to discuss:

• How the CMMC program was phased into DOW


• How CMMC applies to USACE missions and contract actions


• Key actions the DIB must take to prepare for and maintain compliance

Webinar Details

Date: Wednesday, January 14, 2026

Time: 11:00-12:00 PM Central Time

Webinar Link: https://events.dod.teams.microsoft.us/event/6e25542d-bab1-4e06-a881-b14eb41c116f@fc4d76ba-f17c-4c50-b9a7-8f3163d27582

Prepare for CMMC & the Webinar

To maximize your understanding and ensure readiness, we encourage you to review the following:

• CMMC: https://dowcio.war.gov/CMMC/


• CMMC Resources & Documentation: https://dowcio.war.gov/cmmc/Resources-Documentation/


• CMMC SPRS Guide: https://dowcio.war.gov/Portals/0/Documents/CMMC/CMMC-SPRS.pdf


• NIST SP 800-171 Controls: Ensure your current cybersecurity posture aligns with these foundational contractual requirements.


• PIEE Access: Confirm you have followed all 6 steps to use Procurement Integrated Enterprise Environment (PIEE) applications; https://piee.eb.mil/xhtml/unauth/web/homepage/vendorGettingStartedHelp.xhtml#step6


• SPRS Cyber User Role: Secure access to the Supplier Performance Risk System (SPRS) module. Verify you have the “SPRS Cyber Vendor User” role in PIEE to add or edit CMMC or NIST SP 800-171 assessment results.


• Learn more about SPRS and the NEW Cyber Reports (CMMC & NIST): https://www.sprs.csd.disa.mil/pdf/SPRS_Access_CyberReports.pdf


• CAGE Hierarchy: Check and update your CAGE Hierarchy via SAM.gov if needed.


• CMMC Level Assessments: Prepare to add CMMC assessments results in the PIEE CMMC Assessments Database[i] ; Reference CMMC Level 1 and Level 2 Quick Entry Guides linked below.


• Cyber Incident Reporting: Comply with current DFARS 252.204-7012 requirements to report cyber incidents to DoD within 72 hours of discovery, using the DoD’s Cyber Crime Center (DC3) portal: https://dibnet.dod.mil.

CMMC Supplemental Resources

For in-depth information, please consult these official documents and guides:

• CMMC Level 1 and Level 2 Quick Entry Guides: https://www.sprs.csd.disa.mil/nistsp.htm#reference


• CMMC Program Rule (32 CFR Part 170): https://www.federalregister.gov/documents/2024/10/15/2024-22905/cybersecurity-maturity-model-certification-cmmc-program


• FAR Clause 52.204–21: Basic Safeguarding of Covered Contractor Information Systems: https://www.ecfr.gov/current/title-48/chapter-1/subchapter-H/part-52/subpart-52.2/section-52.204-21


• Comprehensive CMMC Documentation (Scoping Guides, Assessment Guides): https://dowcio.war.gov/CMMC/Resources-Documentation/

Important Disclaimers

THIS NOTICE IS FOR INFORMATION ONLY AND DOES NOT CREATE ANY NEW REQUIREMENTS OR RIGHTS OR BENEFITS ENFORCEABLE BY LAW AGAINST THE U.S. GOVERNMENT. THIS NOTICE IS SOLELY FOR INFORMATIONAL PURPOSES TO ASSIST INDUSTRY PARTNERS IN UNDERSTANDING CMMC IMPLEMENTATION.

Questions & Support

• For USACE solicitations: Please contact the Contracting Officer/Contract Specialist listed on the specific SAM.gov publication


• General CMMC Program Resources:
  
  
  
  • https://dodcio.defense.gov/CMMC/about/
  
  
  • https://www.acq.osd.mil/cmmc/
  
  
  
  


• SPRS Training Classes and Tutorials: https://www.sprs.csd.disa.mil/webtrain.htm


• Regulatory References: 32 CFR Part 170

[i] The PIEE SPRS CMMC Assessment Database is the authoritative DOW system of record for managing, validating, and enforcing CMMC assessment results under the final CMMC framework (32 CFR part 170) and DFARS Subpart 204.75. It is an expanded and modernized capability within SPRS (Supplier Performance Risk System) hosted in PIEE. The CMMC Assessment Database in SPRS is the centralized repository that:

• Stores official CMMC assessment results for each contractor information system


• Assigns and tracks CMMC Unique Identifiers (UIDs)


• Records CMMC status (Final or Conditional) by level and assessment type


• Supports annual affirmation of continuous compliance


• Enables Contracting Officer verification prior to award, option exercise, or period-of-performance extension

Attachments/Links