Pentagon Plans to Implement Cyber Standards for Contractors

Jeff Brody

The Department of Defense intends to implement new cybersecurity standards for government contractors by January 2020, FedScoop reported Friday.

DoD will work with the Johns Hopkins University Applied Physics Laboratory and Carnegie Mellon University Software Engineering Institute to develop the proposed standards – Cybersecurity Maturity Model Certification.

The department will tap third-party companies to assess the contractors’ compliance with the standards and establish a cyber education and training center. The proposed five-level standards will merge the National Institute of Standards and Technology’s cyber guidance with industry and academic organizations’ recommendations.

Once implemented, the level of cybersecurity will be specified on all solicitations for contracts.

Katie Arrington, special assistant to the assistant secretary of defense acquisition for cyber, announced the proposed standards on Thursday during a Professional Services Council conference and called on the industry to collaborate with the government to ensure data security.

You may also be interested in...

Maria Roat

Maria Roat on Federal CIO Council’s Data-Sharing Priorities

Maria Roat, deputy federal chief information officer and a 2020 Wash100 Award recipient, has said the Federal CIO Council seeks to make investments in identity and access management as well as data-sharing protocol updates. Roat said that the council seeks to improve data-sharing across systems that handle large volumes of critical information such as the Department of Health and Human Services’ HHS Protect.