Cybersecurity, Privacy, & AI

Trending Now

Agriculture Department Kicks Off $300M Palantir Deal on IT, National Security Work • Vercel Attack Fallout Expands to More Customers and Third-Party Systems • Seeing the Cyber in Economic Statecraft • Responding to a Data Breach: How to Preserve the Attorney-Client Privilege • NIST Cyber Center to Launch OT ‘Visibility’ Project

Published on February 18, 2021 • Cyber

Industry Feedback Leading to Tweaks in CMMC

G-Tech Studios | Shutterstock

The Defense Department is reportedly planning changes to the highest levels of the five-tier Cybersecurity Maturity Model Certification, after receiving public comments on the recently issued CMMC Defense Federal Acquisition Regulation System rule. It’s unclear exactly what these changes will entail, but the announcement also comes after the publication of new protective guidance from the National Institute of Standards and Technology: SP 800-172. Stacy Bostjanick, the acting director of supply risk management at DoD, said that the department is trying to synchronize CMMC levels four and five – which will need to be met only by companies handling the most secure data – with NIST’s new guidance.

Source:

FedScoop: CMMC Model Tweaks Coming After Industry Feedback

Stay compliant and protected with daily updates on cybersecurity, data privacy, and federal oversight with our Cyber & Privacy newsletter, delivering up-to-the-minute intelligence Monday–Saturday — Subscribe here.