Katie Arrington: Pentagon’s Cyber Certification Model Specifically Designed for Small Businesses

Jeff Brody
Katie Arrington

Katie Arrington, special assistant to the assistant secretary of defense for acquisition for cyber, said the Department of Defense’s new cybersecurity certification model seeks to help small businesses comply with cyber controls through a tiered rating system depending on the platforms they are asked to protect, Fifth Domain reported Tuesday.

Arrington stated that the new Cybersecurity Maturity Model Certification seeks to strengthen the security of small businesses, which are being targeted by nation state-backed cyber attacks, and level the playing field when it comes to cybersecurity.

In September, the Pentagon issueddraft version of CMMC, which establishes cyber practices and standards meant to help the defense industrial base reduce exfiltration of controlled unclassified information.

The draft CMMC v0.4 has five levels ranging from basic cyber hygiene to highly advanced practices and each level has specific practices and activities that need to be implemented by stakeholders to achieve a capability.

You may also be interested in...

Frank Kendall

Air Force Secretary Frank Kendall Vows to Focus on Mission Fulfillment

Frank Kendall, a former acquisition chief at the Department of Defense (DOD) and a three-time Wash100 Award winner, was sworn in Wednesday as secretary of the Air Force. "I will be totally focused on ensuring that our Air and Space Forces can fulfill their missions to defend the nation against our most challenging threats, today and into the future,” the 26th SecAF said.