The Defense Department and the Cybersecurity Maturity Model Certification Accreditation Body aren’t clear on a plan to deal with contractors that base a significant portion of their supply chains in China. “Our anticipation is that if there is an overseas entity that needs to hold [controlled unclassified information], that we would definitely have a team that would be able to go over and evaluate their network,” said Stacy Bostjanick, director of cybersecurity policy for the Defense Intelligence Agency. One stumbling block are Chinese laws compelling local companies to share information with their government.
Cybersecurity, Privacy, & AI
Trending Now
Agriculture Department Kicks Off $300M Palantir Deal on IT, National Security Work • Vercel Attack Fallout Expands to More Customers and Third-Party Systems • Seeing the Cyber in Economic Statecraft • Responding to a Data Breach: How to Preserve the Attorney-Client Privilege • NIST Cyber Center to Launch OT ‘Visibility’ Project
DOD Officials, Cybersecurity Accreditation Partners Struggle with the China Question
Lightspring | Shutterstock
Stay compliant and protected with daily updates on cybersecurity, data privacy, and federal oversight with our Cyber & Privacy newsletter, delivering up-to-the-minute intelligence Monday–Saturday — Subscribe here.