In January, the Pentagon plans to publish the final Cybersecurity Maturity Model Certification, under which companies would have their cyber practices graded, and procurement officials would use that to determine which vendors are eligible for certain contracts, with more sensitive projects requiring more stringent security standards. However, while the program is intended to push vendors to strengthen their security standards and increase visibility into the department’s supply chain, it could also render a significant chunk of the Pentagon’s contractor pool ineligible for its most sensitive projects. Maj. Gen. Garrett Yee, assistant to the director of DISA, says they don’t know how many.
Cybersecurity, Privacy, & AI
Trending Now
Anthropic’s Reported $30B Funding Talks Spotlight AI’s Growing Role in Cybersecurity, Defense • DC3 Seeks New Contractors for DCISE Voluntary Cyber Information-Sharing Program • Pentagon Cyber Official Calls Advanced AI ‘Revolutionary Warfare’ • NIST Aims for Summer Release of AI Cyber Guidelines • President Trump’s Cyber Strategy: Cross-Sector Implications for U.S. and UK Businesses
DISA Official: “No One Knows” How Cyber Standards Will Impact Contractor Pool
Stay compliant and protected with daily updates on cybersecurity, data privacy, and federal oversight with our Cyber & Privacy newsletter, delivering up-to-the-minute intelligence Monday–Saturday — Subscribe here.