In this session three of a four part series led by Cara Wulf, we explore the origin and development of the Department of Defense Cybersecurity Maturity Model Certification (CMMC). We outline the basic structure of CMMC and explore in depth the key terms, practices, and processes to be implemented by contractors. We will highlight some of the ambiguities that still exist in this program and key challenges contractors are likely to face in implementation. We also provide insight as to the future of the CMMC program and how contractors can best prepare for the coming obligations.