Fortinetics
Readiness quizzes

Self-assess across
five frameworks.

Fifteen questions each. About five minutes. You get a score, a readiness tier, and the areas where your posture is weakest. No signup, no email required — data never leaves your browser unless you choose to send results.

CMMC Level 2

CMMC 2.0 Level 2

Fifteen questions across the fourteen CMMC 2.0 Level 2 domains. Takes about five minutes. No signup required to take the quiz.
15 questions
out of 110
Start →
CMMC Level 1

CMMC 2.0 Level 1

Fifteen questions covering the seventeen basic safeguarding practices from FAR 52.204-21. Takes about four minutes. For organizations handling Federal Contract Information (FCI) but not Controlled Unclassified Information.
15 questions
out of 100
Start →
SOC 2 Type II

SOC 2 Type II

Fifteen questions across the AICPA Common Criteria (CC1–CC9), plus touches on Availability and Confidentiality. Takes about five minutes. Focused on the Security Trust Services Criterion — the foundation of every SOC 2 scope.
15 questions
out of 100
Start →
ISO 27001

ISO/IEC 27001:2022

Fifteen questions covering ISMS fundamentals (scope, leadership, risk, internal audit) and the four Annex A themes (Organizational, People, Physical, Technological). Takes about five minutes.
15 questions
out of 100
Start →
FedRAMP

FedRAMP Moderate

Fifteen questions covering FedRAMP-specific posture: boundary definition, SSP state, sponsorship, 3PAO engagement, technical controls, Continuous Monitoring, and FedRAMP requirements that often surprise first-time CSPs. Takes about five minutes.
15 questions
out of 100
Start →
Not sure which to take?

Take the one for your next target.

  • DoD contracts involving CUI? Take CMMC Level 2.
  • DoD contracts with FCI only? Take CMMC Level 1.
  • Commercial SaaS selling to enterprise buyers? Take SOC 2.
  • Global customers or ISO requirement? Take ISO 27001.
  • Cloud service provider entering federal market? Take FedRAMP.
Multi-framework?

See how your existing cert carries over.

Already hold a cert and considering another? The Framework Overlap Explorer shows how much of your existing posture applies to each target — and what's new.

Try the overlap explorer →