Eric Noonan of CyberSheath argues that the Cybersecurity Maturity Model Certification introduces a new paradigm for cybersecurity: disqualifying organizations from doing business with the Department of Defense, essentially cutting off their revenue, rather than just imposing a fine. Noonan calls it a major step in the right direction, one which should not become politicized as another regulatory burden. He says that “just like we need seat belts, air bags and anti-lock brakes as safety features in our cars, businesses need a base level of cybersecurity to guard American innovation.” Noonan proposes building on this standard to apply to more of the American economy.
Cybersecurity, Privacy, & AI
Trending Now
What Business Leaders Need to Know About Cybersecurity Certification and Enforcement in 2025–2026 • NRC Efficiency Plan to Reuse DOE, DoD Data Met With Skepticism • Closed Briefing Sets Stage For House Hearing On Anthropic’s Mythos and Cyber Risks • CISA, G7 Partners Release AI Software Bill of Materials Guidance • OMB to Refresh the Federal IT Dashboard
Why CMMC Could Be Our Best Weapon to Fight Back Against Chinese IP Theft
allensima | Shutterstock
Stay compliant and protected with daily updates on cybersecurity, data privacy, and federal oversight with our Cyber & Privacy newsletter, delivering up-to-the-minute intelligence Monday–Saturday — Subscribe here.