Here's the Easy Part

Solutions and resources to fit your business needs.

The 171Comply CMMC Level 1 Playbook simplifies the process.

Free Downloads

The following policies are not required within the CMMC/NIST 800-171 System Security Plan (SSP) framework. However, they are good business practices.

The 171Comply Acceptable Use Policy


This policy outlines system user responsibility and defines unacceptable use. Most importantly, it satisfies the legal requirement to notify users that their actions and behavior on the organization’s system resources are monitored. It states there should be no expectation of privacy when accessing or using system resources. It requires the users to sign the policy, attesting that they understand that there is no privacy on the system and that their actions are monitored.

The 171Comply Ethics Policy


The purpose of the Ethics Policy in the System Security Plan is to establish a culture of responsibility, respect, fairness, and professionalism. These behaviors are vital in developing an organization that is mature and is cyber-aware.

Your free downloads include a 171Comply Free Membership. Keep up to date on Cyber Security news and best practices.


Level 1 FCI Playbook
& Cyber Alert
Subscription Bundle

Accelerate your CMMC compliance journey:

In addition to CMMC system security plans (SSP), policy templates, worksheets, and outlines, 171Comply provides consulting services that guide companies toward CMMC compliance from Level 1 to Level 2, saving businesses of every size time and money.

The 171Comply Subscription service provides compliance tools, information about training venues, and steps to raise situational awareness, including:   

      • the Level 1 Playbook, outlining the requirements for CMMC Level 1, actions to take and avoid, and recommendations for demonstrating compliance
      • one hour of CMMC Level 1 support to accompany the Playbook download  
      • sample policies focused on acceptable use, ethics, and demonstration of practice and process institutionalization 
      • monthly CyberAlerts that provide situational awareness and tips on defensive measures to ensure system security 
      • information on training venues, cost capture, and institutionalization and sustainment tools  
      • reduced rates for consultation beyond the scope of the subscription 

The greatest cost for CMMC compliance is in institutionalization and sustainment; it is not in meeting compliance certification. Your 171Comply Subscription will reduce these costs by providing compliance tools and the best practices in system security institutionalization and sustainment.

This bundle includes a 171Comply Premium Membership. Keep up to date on Cyber Security news and best practices.


 Level 1 FCI Playbook Download 

Federal contract information (FCI) plus one hour of consulting:

About three-quarters of the Defense Industrial Base (approximately 240,000 companies out of 300,000) will need to self-assess at CMMC Level 1 annually. Level 1 is focused on protecting Federal Contract Information (FCI), information that is in all Federal Contracts. The 171Comply Level 1 Playbook is focused on the actions needed to meet the 15 security controls outlined in FAR 52.204-21 and the CMMC Level 1 requirements.

Federal contractors should be in compliance with these requirements now.

Through a list of best practices, the 171comply Level 1 Playbook assists companies in meeting the 17 CMMC requirements and the 59 assessment objectives.

The owner or corporate officer will sign the annual self-assessment to certify compliance.

The Federal Government is to enforce compliance through the False Claims Act.

This download includes a 171Comply Premium Membership. Keep up to date on Cyber Security news and best practices.

Call Us

Contact us and we'll get back to you within 24 hours.


a Division of CommTech Systems, Inc

Send Us a Message