Katie Arrington, chief information security officer at the office of assistant secretary of defense for acquisition and a 2020 Wash100 Award winner, said the requirements and other elements of the Cybersecurity Maturity Model Certification program could still change as the Department of Defense assesses the public comments submitted through the end of November, Nextgov reported Wednesday.
Read More » Katie Arrington, chief information security officer at the office of assistant secretary of defense for acquisition and a 2020 Wash100 Award winner, said the Department of Defense (DoD) is close to signing a new agreement with the Cybersecurity Maturity Model Certification (CMMC) Accreditation Body responsible for training auditors for the CMMC program.
Read More » Katie Arrington, chief information security officer at the office of assistant secretary of defense for acquisition and a 2020 Wash100 Award winner, said the Department of Defense (DoD) should step up efforts to change the workforce culture around DevSecOps. She noted that DoD should educate its personnel about DevSecOps and cited how the department’s Adaptive Acquisition Framework could help advance DevSecOps adoption.
Read More » The Department of Defense (DoD) is on track with the final step to begin integrating Cybersecurity Maturity Model Certification (CMMC) requirements into contracts. The full CMMC program will be implemented over a period of five years and the Pentagon said contractors should expect to see such requirements in a few contracts by the end of 2020.
Read More » Katie Arrington, a 2020 Wash100 Award winner and chief information security officer for defense acquisition, said she expects the Pentagon’s new cybersecurity vetting program to certify 7,500 companies by 2021.
Read More » The Department of Defense (DoD) has revised the Cybersecurity Maturity Model Certification (CMMC) program to remove the certification requirement for suppliers of commercial-off-the-shelf products, FedScoop reported Tuesday.
Read More » The Department of Defense (DoD) has assigned the National Institute of Standard and Technology to help create requirements for independent assessors under the department’s Cybersecurity Maturity Model Certification program, FedScoop reported Wednesday.
Read More » Ty Schieber, chairman of the Cybersecurity Maturity Model Certification accreditation board, said the Department of Defense has granted the nonprofit group formal authority to select third-party assessment organizations that will audit companies' CMMC compliance, FedScoop reported Thursday.
Read More » Katie Arrington, 2020 Wash100 Award recipient and the chief information security officer for the Department of Defense (DoD) acquisition, stated that training of third party assessors for the Cybersecurity Maturity Model Certification (CMMC) program was slated to start in mid-April, but the coronavirus (COVID-19) outbreak may affect the projected implementation.
Read More » In January, the U.S. Department of Defense released Version 1.0 of its Cybersecurity Maturity Model Certification framework (CMMC). By 2026, DoD plans to require CMMC certification for all defense contracts. Contractors in the defense industry supply chain will be required to develop, assess, and augment cybersecurity practices, earning different maturity levels.
Read More »
Executive Gov