Free interactive tool — score all 17 practices, get a gap report
This tool gives you a free score. The full Sentinelle Cybersecurity Templates Pack includes CMMC L1 + L2 (110 practices), NIST 800-53 Rev 5, SOC 2 readiness, SSP template, POA&M template, and the fillable DOCX/xlsx versions.
CMMC Level 1 = 17 practices across 6 domains tied to FAR 52.204-21 (Basic Safeguarding of Covered Contractor Information Systems). Required for ANY DoD contractor or subcontractor handling FCI (Federal Contract Information).
L1 is pass/fail. All 17 must be MET to certify. Self-assessment is annual. Score is posted to SPRS, then affirmation is submitted by a senior official within 30 days.
L1 is binary at the practice level — each practice is MET or NOT. The "PARTIAL" tag is for your own gap tracking (it doesn't count toward MET in CMMC scoring; it just means you haven't fully closed the gap yet).
SPRS score for CMMC L1 is informational (the actual SPRS for L2 scores 0-110). For L1 you'd report your overall compliance status (Compliant / Not Compliant).
Built by Sentinelle Systems LLC — federal contracting firm in Virginia. Tom holds AWS Security Specialty, Security+, CySA+; CISSP in progress. 11+ years cybersecurity practice including MSP/MSSP (Arete), financial services (COCC), email security (Barracuda), and federal contracting (Telos / DOD).