Intermediate 60 min 4-8 players Requires CMMC Pack
During a CMMC Level 2 assessment, auditors discover that Controlled Unclassified Information has been stored on unauthorized systems and potentially exposed to foreign nationals. This tabletop exercise puts your defense contractor team in the high-stakes intersection of cybersecurity compliance and national security. Participants will navigate DFARS 252.204-7012 reporting requirements, coordinate with the DIBNet portal, manage assessor communications, and make critical decisions about voluntary self-disclosure versus the risks of concealment — all while preserving the organization's ability to bid on future DoD contracts.