The Department of Defense is looking for a nonprofit organization to conduct audits and train contractors to comply with soon-to-be established Cybersecurity Maturity Model Certification standards, Fedscoop reported Wednesday. The CMMC guidelines will have five levels intended to assess cybersecurity measures implemented by businesses seeking opportunities with DoD.
“We are making security a part of that discussion,” said Katie Arrington, special assistant to the assistant secretary of defense acquisition for cyber. “In fact, it is paramount to that discussion.”
Arrington expects the selected third-party entity to begin certification operations by January 2020.