Tag Archives: cmmc

Christine Michienzi: DOD Continues CMMC Review; Encourages Industry to Continue Prep Work

Christine Michienzi

Christine Michienzi, chief technology officer under the deputy assistant secretary of defense for industrial policy, said the government continues to review mechanisms of the Cybersecurity Maturity Model Certification (CMMC) program. She said Monday at the Intelligence and National Security Summit that the defense industry should continue efforts to align with CMMC despite upcoming program changes that may result from the ongoing review.

Read More »

Trade Groups Offer Recommendations to DOD Over CMMC Program

Cybersecurity

The Information Technology Industry (ITI) Council, National Defense Industrial Association (NDIA) and the Professional Services Council (PSC) have presented six recommendations to the Department of Defense (DOD) to better support the review of potential changes to the Cybersecurity Maturity Model Certification (CMMC) program and assessment practices.

Read More »

DHS Seeks to Advance Assessment of Industry Compliance With Cyber Hygiene Requirements

Cyber Hygiene

The Department of Homeland Security (DHS) is carrying out a pathfinder assessment to chart a course forward as it works to further advance the process of evaluating vendors’ compliance with cyber hygiene requirements. “Our end goal is to have a means of ensuring a contractor has key cybersecurity and cyber hygiene practices in place as a condition for contract award,” the DHS notice reads.

Read More »

DOD to Explore Ways to Address Small Business Concerns Over CMMC Program

Cybersecurity

A spokesperson for the Department of Defense said DOD will “look for avenues” to lower costs associated with the Cybersecurity Maturity Model Certification program for small businesses while keeping CMMC’s focus on addressing supply chain risks as part of its internal review. DOD’s statement comes after small enterprises raised concerns over the CMMC program during a House Committee on Small Business subcommittee hearing Thursday.

Read More »

Jesse Salazar Outlines 3 Goals of Pentagon’s CMMC Program Review

Jesse Salazar

Jesse Salazar, deputy assistant secretary of defense for industrial policy, said the Department of Defense’s (DOD) review of the Cybersecurity Maturity Model Certification (CMMC) program has three “broad goals” and the first is managing cyber costs for small businesses. The other two goals he discussed are clarifying cyber regulations and reinforcing trust in CMMC assessment process.

Read More »

IPC’s John Mitchell: DOD Should Consider CMMC Compliance’s Impact on Small, Medium-Sized Enterprises

Cybersecurity

John Mitchell, president and CEO of electronics manufacturing industry association IPC, said the Department of Defense (DOD) should give careful consideration to small and medium-sized businesses seeking to comply with the Cybersecurity Maturity Model Certification (CMMC) program. Leslie Weinstein, author of the IPC report on CMMC, said DOD can use existing industry certifications and standards to help reduce the costs and address uncertainties associated with CMMC compliance.

Read More »

First Company to Clear DOD’s Initial Assessment Awaits Certification as CMMC Assessor; Matthew Montgomery Quoted

CMMC-AB

The Defense Industrial Base Cybersecurity Assessment Center (DIBCAC) has allowed an anonymous company to move forward in the Department of Defense's contractor cybersecurity standards certification process. The first company to gain the approval of DIBCAC will now await the Cybersecurity Maturity Model Certification (CMMC) Accreditation Body's (CMMC-AB) decision on whether it will be granted the Certified Third Party Assessment Organization (C3PAO) status.

Read More »

CyberSheath Announces New CMMC Managed Service; Eric Noonan Quoted

Eric Noonan

CyberSheath Services International announced Tuesday the next evolution of its CMMC Managed Services, including its CMMCEnclave. CMMCEnclave is a service that enables small and mid-sized businesses to obtain CMMC certification required to secure Department of Defense (DOD) contracts. CyberCloud Shared Services shares desktops while data security is enforced to CMMC compliance standards. 

Read More »

Karlton Johnson: CMMC Accreditation Body’s Board Eyes Nonprofit Status, Grant Funding

Karlton Johnson

Karlton Johnson, chairman of the Cybersecurity Maturity Model Certification Accreditation Body’s (CMMC-AB) board of directors, said the volunteer board is working to transition operations to paid staff as it awaits potential nonprofit status. “If in doubt, the government has oversight with us and so we’re working hand in hand with the government,” he noted.

Read More »

Air Force CIO Lauren Knausenberger Shares Views on CMMC

Lauren Knausenberger

Lauren Knausenberger, chief information officer of the U.S. Air Force and 2021 Wash100 Award, said she has concerns about the potential impact of the Department of Defense’s (DoD) Cybersecurity Maturity Model Certification (CMMC) program on small businesses seeking to work with DOD. Knausenberger thinks the Pentagon’s information technology supply chain should be supported with better cyber standards. 

Read More »