CMMC 1.0 Practice SC.3.193 Requirement:

Implement a policy restricting the publication of “Controlled Unclassified Information” (CUI) on externally-owned publicly accessible websites (e.g., Forums, LinkedIn, Facebook, Twitter, etc.).

CMMC 1.0 SC.3.193 Requirement Explanation:

“Controlled Unclassified Information” (CUI) must only be accessible to authorized persons, by posting “Controlled Unclassified Information” (CUI) publicly it is accessible to everyone.

Example CMMC 1.0 SC.3.193 Implementation:

Create a policy restricting employees from posting “Controlled Unclassified Information” (CUI) onto public websites. Examples include social media, blogs, and forums. This includes discussing “Controlled Unclassified Information” (CUI) in private messages on those sites.

CMMC 1.0 SC.3.193 Scenario(s):

- Scenario 1:

You have a security policy document that all employees must sign off on. One of the policies states that employees are prohibited from posting “Controlled Unclassified Information” (CUI) onto public websites.

Discover Our NIST SP 800-171 & CMMC 2.0 Solutions:


Compliance Accelerator

Power through compliance. Meet and maintain your NIST SP 800-171 & CMMC 2.0 compliance requirements.

Quantum Assessor

Transform your business. Create new revenue streams and provide scalability for your NIST SP 800-171 and CMMC 2.0 services.

Supply Chain Verifier

Trust is everything. Verify, monitor, and support subcontactor compliance.