Stats
Actions
Tags
From cmmc
Assesses CMMC v2.0 readiness for target level (1-3) with optional scope, producing compliance score, domain gaps, practice status, C3PAO preparation, and remediation roadmap.
How this command is triggered — by the user, by Claude, or both
Slash command
/cmmc:assessThe summary Claude sees in its command listing — used to decide when to auto-load this command
# CMMC Assessment Evaluates organizational readiness for Cybersecurity Maturity Model Certification (CMMC) v2.0. ## Arguments - `$1` - Target CMMC level (required: 1, 2, or 3) - `$2` - Assessment scope (optional: full, gap-analysis, specific-domain) ## CMMC Levels | Level | Name | Description | Requirements | |-------|------|-------------|--------------| | 1 | Foundational | Basic cyber hygiene | Annual self-assessment, 17 practices | | 2 | Advanced | Intermediate cyber hygiene | Triennial 3rd party assessment (C3PAO), 110 practices | | 3 | Expert | Advanced/progressive cybersecurity | ...
Evaluates organizational readiness for Cybersecurity Maturity Model Certification (CMMC) v2.0.
$1 - Target CMMC level (required: 1, 2, or 3)$2 - Assessment scope (optional: full, gap-analysis, specific-domain)| Level | Name | Description | Requirements |
|---|---|---|---|
| 1 | Foundational | Basic cyber hygiene | Annual self-assessment, 17 practices |
| 2 | Advanced | Intermediate cyber hygiene | Triennial 3rd party assessment (C3PAO), 110 practices |
| 3 | Expert | Advanced/progressive cybersecurity | Triennial Govt-led assessment, 110+ practices |
Readiness Score: Overall compliance percentage by level
Domain Gaps: Which of the 14 domains need attention
Practice Implementation Status: Per-practice compliance
C3PAO Preparation: Readiness for third-party assessment
Remediation Roadmap: Prioritized action plan
# Full Level 2 assessment for DoD contractor
/cmmc:assess 2 full
# Gap analysis for Level 1 compliance
/cmmc:assess 1 gap-analysis
# Specific domain assessment
/cmmc:assess 2 "Access Control"
npx claudepluginhub grcengclub/claude-grc-engineering --plugin cmmc/assessEvaluates organizational readiness for CSA CCM v4.0 compliance using specified scope (full, domain-specific, service-model) and optional cloud service model (IaaS, PaaS, SaaS, hybrid).
/assessAssesses HITRUST CSF readiness for specified type (i1, r2, e1) and optional scope, producing readiness score, domain breakdowns, gap analysis, and remediation roadmap.
/assessAssesses CIS Controls v8 compliance for specified Implementation Group (IG1/IG2/IG3), with optional full, gap-analysis, or specific-control scope.
/gap-analysisPerforms structured gap analysis against compliance frameworks like FedRAMP or SOC2 for a given scope, generating assessment templates, interactive worksheets, gap summaries, heat maps, and remediation roadmaps.
/assessAssesses compliance with NIST 800-53 controls for a specified control family (e.g., AC) or baseline (low, moderate, high), with optional revision (r4 or r5).
/assessAssesses organizational readiness for ACSC Essential 8 cyber security strategies at target maturity level (1-3), producing overall compliance score and per-strategy status.