Cybersecurity, Privacy, & AI

Trending Now
Top House Cyber Lawmaker Plans to Introduce DHS Overhaul Bill by Next Year • Executive Orders Seek to Hasten Quantum Computing—and Guard Against Its Use • In a First, a Court Takedown Goes After Two Cybercrime Tools at Once • NIST Opens Updated IoT Security Guidance to Public Review • Five Eyes Agencies Urge Leaders to Strengthen Cyber Resilience in AI Era
Protests & Claims Newsletter Cyber & Privacy Newsletter Compliance & Enforcement Newsletter Development Newsletter Transforming Procurement Newsletter
Published on February 8, 2021 Cyber

CMMC to Offer Reciprocity with FedRAMP, DIBCAC, and ISO 27001 Certifications

CMMC to Offer Reciprocity with FedRAMP, DIBCAC, and ISO 27001 Certifications

G-Tech Studios | Shutterstock

The Defense Department and the CMMC Accreditation Body have agreed on terms for accommodating companies that have already been audited for cybersecurity – such as through the GSA’s Federal Risk and Authorization Management Program – and related memos are reportedly set to be signed. Katie Arrington, CISO for Defense acquisitions, said CMMC will officially provide reciprocity for FedRAMP audits, as well as those conducted by the Defense Industrial Base Cybersecurity Assessment Center since the summer of 2019, and those by the International Organization for Standardization. “I’m going to take any ISO 27001 and provide reciprocity,” Arrington said, referring to the foundational international information security standard.

Source:

Stay compliant and protected with daily updates on cybersecurity, data privacy, and federal oversight with our Cyber & Privacy newsletter, delivering up-to-the-minute intelligence Monday–SaturdaySubscribe here.

© PubKGroup 2024