Tag Archives: cybersecurity maturity model certification

DOD to Explore Ways to Address Small Business Concerns Over CMMC Program

Cybersecurity Threats

A spokesperson for the Department of Defense said DOD will “look for avenues” to lower costs associated with the Cybersecurity Maturity Model Certification program for small businesses while keeping CMMC’s focus on addressing supply chain risks as part of its internal review. DOD’s statement comes after small enterprises raised concerns over the CMMC program during a House Committee on Small Business subcommittee hearing Thursday.

Read More »

Jesse Salazar Outlines 3 Goals of Pentagon’s CMMC Program Review

Jesse Salazar

Jesse Salazar, deputy assistant secretary of defense for industrial policy, said the Department of Defense’s (DOD) review of the Cybersecurity Maturity Model Certification (CMMC) program has three “broad goals” and the first is managing cyber costs for small businesses. The other two goals he discussed are clarifying cyber regulations and reinforcing trust in CMMC assessment process.

Read More »

IPC’s John Mitchell: DOD Should Consider CMMC Compliance’s Impact on Small, Medium-Sized Enterprises

Cybersecurity Threats

John Mitchell, president and CEO of electronics manufacturing industry association IPC, said the Department of Defense (DOD) should give careful consideration to small and medium-sized businesses seeking to comply with the Cybersecurity Maturity Model Certification (CMMC) program. Leslie Weinstein, author of the IPC report on CMMC, said DOD can use existing industry certifications and standards to help reduce the costs and address uncertainties associated with CMMC compliance.

Read More »

Karlton Johnson: CMMC Accreditation Body’s Board Eyes Nonprofit Status, Grant Funding

Karlton Johnson

Karlton Johnson, chairman of the Cybersecurity Maturity Model Certification Accreditation Body’s (CMMC-AB) board of directors, said the volunteer board is working to transition operations to paid staff as it awaits potential nonprofit status. “If in doubt, the government has oversight with us and so we’re working hand in hand with the government,” he noted.

Read More »

Air Force CIO Lauren Knausenberger Shares Views on CMMC

Lauren Knausenberger

Lauren Knausenberger, chief information officer of the U.S. Air Force and 2021 Wash100 Award, said she has concerns about the potential impact of the Department of Defense’s (DoD) Cybersecurity Maturity Model Certification (CMMC) program on small businesses seeking to work with DOD. Knausenberger thinks the Pentagon’s information technology supply chain should be supported with better cyber standards. 

Read More »

Karlton Johnson: CMMC Accreditation Board to Undergo Leadership-Focused Organizational Change

Karlton Johnson

Karlton Johnson, board chairman of the Cybersecurity Maturity Model Certification (CMMC) Accreditation Body (CMMC-AB), said he will focus on transforming his group from a director board into one more focused on organizational leadership. The board is working to help the government implement CMMC, through which the Department of Defense (DOD) would standardize the security controls of the defense industrial base.

Read More »

DOD Launches Review of CMMC Vetting Program; Robert Metzger Quoted

CMMC Vetting

Jessica Maxwell, a spokeswoman for the Department of Defense (DOD), said the Pentagon is assessing the Cybersecurity Maturity Model Certification (CMMC) program to ensure that it is meeting goals without impeding industry participation. Maxwell told the publication in a statement that the DOD routinely executes assessments at the early stages of major programs.

Read More »

CohnReznick Earns CMMC Third-Party Assessment Organization, Registered Provider Organization Certification; Bhavesh Vadhani Quoted

CohnReznick

CohnReznick has become one of the first organizations to be recognized with a CMMC Third-Party Assessment Organization (C3PAO) and a Registered Provider Organization (RPO) by the Cybersecurity Maturity Model Certification (CMMC) accreditation body. “CohnReznick is excited to advance within the CMMC-AB ecosystem, enabling us to assist our clients in taking the next step toward CMMC compliance,” said Bhavesh Vadhani

Read More »

Report: Ben Tchoubineh, Nicole Dean Step Down as CMMC Board Members

CMMC Accreditation Body

Ben Tchoubineh, chair of the training committee within the Cybersecurity Maturity Model Certification Accreditation Body, and Nicole Dean, a CMMC board member, have stepped down from their posts. The CMMC-AB is advancing efforts to train enough assessors to perform in-person audits of defense companies’ readiness when it comes to cybersecurity. 

Read More »

GSA to Educate Contracting Officers on DOD’s New Cybersecurity Standards; Keith Nakasone Quoted

Keith Nakasone

The General Services Administration (GSA) has begun to develop training documents for contracting officers in line with the Department of Defense's (DOD) new cybersecurity standards. Keith Nakasone, deputy assistant commissioner for information technology acquisition at GSA, said contracting officers would use these documents as guides for DOD's Cybersecurity Maturity Model Certification (CMMC) standards.

Read More »