Pentagon seeks input for upgraded cybersecurity certification program.

December 30, 2023
1 min read

The US Department of Defense is seeking public input on a proposed revision to its Cybersecurity Maturity Model Certification (CMMC) program. The CMMC program ensures that defense contractors have implemented necessary security measures to protect federal contract and controlled unclassified information. The proposed revision allows for self-assessment for some requirements, simplifies compliance, prioritizes information protection, and enhances collaboration between the DoD and industry. The program involves assessments at three levels, with self-assessments permitted for lower levels and Government assessors reducing costs for higher levels. The public comment period is open for 60 days and the Pentagon is seeking feedback on various CMMC guidance documents and new information collections.

URL: https://www.securityweek.com/pentagon-wants-feedback-on-revised-cybersecurity-maturity-model-certification-program/

Key Points:

  • The US Department of Defense is seeking public input on a proposed revision to its Cybersecurity Maturity Model Certification (CMMC) program.
  • The CMMC program ensures that defense contractors have implemented necessary security measures to protect federal contract and controlled unclassified information.
  • The proposed revision allows for self-assessment for some requirements, simplifies compliance, prioritizes information protection, and enhances collaboration between the DoD and industry.
  • The program involves assessments at three levels, with self-assessments permitted for lower levels and Government assessors reducing costs for higher levels.
  • The public comment period is open for 60 days and the Pentagon is seeking feedback on various CMMC guidance documents and new information collections.

Latest from Blog

Top 3 Cybersecurity Stocks for May 2024 Buy Now

TLDR: Key Points: Cybersecurity stocks are using AI to enhance their platforms Top cybersecurity stocks to buy now include Crowdstrike, Fortinet, and Palo Alto Networks Article Summary: The cybersecurity market is booming

Get Secure: Know the Basics of Cloud Security Fundamentals Now

TLDR: Cloud security fundamentals are essential for data protection, regulatory compliance, and access management in a cloud environment. Key fundamentals include identifying assets, implementing security controls, conducting risk assessments, managing user access