Federal News Network

DoD to evaluate ‘external’ CMMC risks

A new GAO report found the Pentagon hasn't fully fleshed out the risks of relying on the private sector to implement the CMMC program.
JD Supra

CMMC 2.0: DoD Scales Back Certification and Streamlines Cybersecurity Requirements for Defense Contractors

On November 4, 2021, the U.S. Department of Defense (DoD) Office of the Under Secretary of Defense for Acquisition and Sustainment (OUSD(A&S)) announced Version 2.0 of the highly publicized ...
JD Supra

DoD’s Proposed Cybersecurity Maturity Model Certification Requirements: What We Know and How to Prepare, Part 2

DoD’s 2016 final rule promulgating cybersecurity requirements at DFARS 252.204-7012 was a momentous development for DoD contractors, in part because the requirements included compliance with 110 ...
Washington Technology

How DOD's certification program works

Defense Department Directive 8570 requires military, civilian and contract personnel who handle information assurance for department systems to have certifications appropriate for the job they perform ...