Cybersecurity

Josef Kamara, CPA, CISSP, CISA · Updated May 6, 2026 · 1 minute read

FCI

Federal Contract Information, information provided by or generated for the government under a contract not intended for public release. FCI triggers CMMC Level 1 requirements (15 practices, annual self-assessment) with a lower protection threshold than CUI.

From the library

The full analysis on FCI.

The article is where the term meets the practitioner. Read how this concept actually shows up in audit, in remediation, and in the boardroom.

Read the analysis →
The Authority Brief

One compliance analysis per week from Josef Kamara, CPA, CISSP, CISA. Federal and private compliance, written for practitioners.