Cybersecurity Maturity Model Certification
CMMC won’t apply to commercial-off-the-shelf suppliers, DOD website shows
DOD officials have long said every single defense contractor will need CMMC certification, but new info says otherwise.
How one RFP is prompting backlash against the new cybersecurity board for defense contractors
An RFP has sparked questions over whether CMMC will work. The request was for a continuous monitoring tool of the industry, but its rushed process raised alarms in the industry.
Pentagon’s CMMC assessor training is coming soon despite hurdles, board says
Training to become a CMMC assessor has taken longer than expected to start, in part due to the pandemic.
CMMC standards for non-defense contractors could be coming
Non-defense contractors should closely watch what the DOD is developing for its contractor cybersecurity standards.
NIST will help create CMMC standards for third-party assessors
Having CMMC training, assessing and credentialling all housed under the one accreditation board has triggered questions about a potential conflict of interest.
Industry has concerns with CMMC’s ‘very ambitious’ rollout
A coalition of six tech industry associations has some gripes with how the DOD plans to roll out CMMC, the new cybersecurity model for all contractors.