Skip to content
    March 25, 2024

    Now Available: CMMC Compliance Reports

    What is CMMC?

    CMMC (Cybersecurity Maturity Model Certification) is a framework to ensure that controlled unclassified information (CUI) is protected by appropriate levels of cybersecurity practices and processes when it’s residing on federal contractors’ networks. CMMC applies to any federal contractor, including over 300,000 companies in the supply chain – such as small businesses, commercial item contractors and foreign suppliers.

    Note: The development of CMMC 2.0 is currently in progress and will greatly simplify the framework to align with NIST 800-171 standards.

    How Can Blumira Help With CMMC?

    Blumira can help your organization easily meet and exceed CMMC (and NIST 800-171) requirements for logging, monitoring, threat detection and response.

    By regularly running and scheduling Blumira’s pre-built CMMC compliance reports, you can prove your compliance to an auditor for certain controls.

    Which Reports Map to Which CMMC Requirements?

    See which Blumira reports map to which CMMC requirements so you can easily hand over pre-built reports to your auditor to prove your compliance. Please note that each report is available for certain integrations, which are listed under each report below:

    CMMC Requirements

    Blumira’s Global Reports

    CMMC AC.1 – Failed Logins: Identify brute force and other credential attacks

    CMMC Controls - Failed Logins
    Available for: Windows, Linux, MacOS

    CMMC AC.1 – VPN Connections: Monitor remote access methods and users

    CMMC Controls - VPN Connections
    Available for: Cisco ASA, WatchGuard, GlobalProtect, SonicWall, Sophos

    CMMC AC.1 – Logins by Location: Spot access from unfamiliar regions

    CMMC - Logins from Outside the US
    CMMC - Logins from Outside the UK
    CMMC - Logins from Outside the AUS
    CMMC - Logins from Outside the CA
    Available for: Azure, Microsoft 365, Duo Security, Okta

    CMMC AU.2 – Privileged Access: Track access by administrators and power users

    CMMC Controls - Administrator Access
    Available for: Windows, Linux

    CMMC AU.6 – Log Tampering: Detect modifications or deletions of log data

    CMMC Controls Log Tampering - Clearing of Windows Event Log
    CMMC Controls Log Tampering - Clearing of Windows Security Event Log
    Available for: Windows

    CMMC AC.7 – Account Lockouts: Find accounts locked due to excessive failed logins

    CMMC - Account Lockouts
    Available for: Windows

    CMMC AC.7 – Password Resets: Track password changes for awareness of compromised accounts

    CMMC - Password Change
    Available for: Windows

    CMMC - Azure Password Change
    Available for: Azure

    CMMC SC.7 – Firewall Traffic: Analyze allowed/blocked connections at perimeter

    CMMC - Allowed Firewall Traffic
    CMMC - Blocked Firewall Traffic

    CMMC IR.4 – IDS/IPS Alerts: Identify potential intrusion attempts and malware

    CMMC - IDS/IPS Alerts
    Available for: SonicWall, Palo Alto, Checkpoint, Sophos XG, Umbrella

    CMMC MP.7 – USB Device Usage: Detect unauthorized devices plugged into endpoints

    CMMC - USB Device Attached
    Available for: Windows

    CMMC Controls - Mounted Device
    CMMC Controls - USB Device Attached
    Available for: MacOS

    CMMC CM.3 – System Changes: Record critical configuration and policy changes

    CMMC - Windows GPO Updates
    Available for: Windows

    CMMC - Azure Policy Changes
    Available for: Azure

    CMMC Firewall Configuration Change 
    Available for: Palo Alto, Fortigate, Cisco ASA, SonicWall, Sophos XG

    How Can I Access the CMMC Reports?

    Blumira customers can use global and saved reports to easily access CMMC compliance reports, as well as many other reports to analyze the logged events that you send Blumira. 

    To view a CMMC global report or one of your saved reports, follow these easy steps:

    1. Navigate to Reporting > Report Builder.
    2. Click View All Saved Reports, search the list, then click the name of the report you want to view.

    Get more tips on how to use Blumira’s Report Builder in our documentation article, Using global and saved reports. Watch the video below to learn more about using Report Builder:

    Blumira For Compliance: Easy & Effective Security For Growing Businesses

    It’s easy to help meet or support multiple compliance controls using Blumira’s security operations platform. Time-strapped IT and security teams can do more with one solution that combines SIEM, endpoint visibility and XDR-integrated automated, guided, and supported response. See our blog post on NIST compliance reports and the different compliance frameworks we support.

    There’s a few different ways you can get started with Blumira:

    • Try XDR Edition Free – Sign up for a free 30-day trial of Blumira’s XDR edition, allowing you to get a live instance up and running to make sure our platform provides the visibility and controls you need to keep your organization running smoothly. To get started, you will need to first sign up for a free SIEM account, then go to the left menu and click Learn More > Start Free Trial to activate your XDR trial.
    • See a Demo – Not ready to try Blumira yet? Watch our product demo video or contact our team to walk through a demo of Blumira’s XDR Platform to get all of your questions answered.
    • Are you an MSP? Check out our MSP Program with NFR licensing for partners.

    Thu Pham

    Thu has over 15 years of experience in the information security and technology industries. Prior to joining Blumira, she held both content and product marketing roles at Duo Security, leading go-to-market (GTM) and messaging for the portfolio solution Cisco Zero Trust. She holds a bachelor of science degree in...

    More from the blog

    View All Posts