Rule Change to Include CMMC Requirements in Contracts On Track; Katie Arrington Quoted

Rule Change to Include CMMC Requirements in Contracts On Track; Katie Arrington Quoted
Katie Arrington DoD

The Department of Defense (DoD) is on track with the final step to begin integrating Cybersecurity Maturity Model Certification (CMMC) requirements into contracts, FedScoop reported Friday.

DoD is now waiting for the Office of Management and Budget (OMB)to clear a rule change to the Defense Federal Acquisition Regulations in order for it to incorporate clauses in solicitations directing the inclusion of CMMC requirements into contracts.

“We are still tracking right along for the DFARs rule change,” Katie Arrington, chief information security officer at the office of assistant secretary of defense for acquisition and a 2020 Wash100 Award winner, said at a webinar. “That has not deviated.”

The full CMMC program will be implemented over a period of five years and the Pentagon said contractors should expect to see such requirements in a few contracts by the end of 2020.

You may also be interested in...

Lina Khan

Lina Khan Sworn in as Federal Trade Commission Chair

Lina Khan, President Biden's nominee to chair the Federal Trade Commission (FTC), has taken her oath to fill the role through September 25, 2024. She formerly served as an associate professor at Columbia Law School and as a legal adviser to FTC commissioner Rohit Chopra. “I look forward to working with my colleagues to protect the public from corporate abuse," Khan said.