Cybersecurity, Privacy, & AI

Trending Now
Doxim Data Breach Settlement Underscores Third-Party Data Security Risk • SASC Proposes Reorganization of Pentagon’s IT, Cyber Leadership • Anthropic Suspends Top AI Models After U.S. Export Control Order • Senate Bill Seeks to Restore Funding for Cyber Information-Sharing Program • CISA Directive Orders Agencies to Prioritize Vulnerability Patching in a New Way
Protests & Claims Newsletter Cyber & Privacy Newsletter Compliance & Enforcement Newsletter Development Newsletter Transforming Procurement Newsletter
Published on February 5, 2020 Cyber

Workforce Specialist to DOD: Sweat the Small Stuff Rolling out CMMC

Workforce Specialist to DOD: Sweat the Small Stuff Rolling out CMMC

Simone Petrella, CEO of CyberVista – which certifies many of the Defense Department’s security personnel – approves of the approach taken by the Cybersecurity Maturity Model Certification, but warns that if the program’s designers don’t take time to spell out specific requirements, things could all fall apart.

The plan is to have independent auditors overseen by a nonprofit accreditation body use the model in conjunction with assessment guides to certify whether contracting applicants have the “maturity” of security needed to protect the data they would be handling. Petrella says those guides need to flesh out what proof is needed to demonstrate conformity with a certain level of maturity, so the auditors know what to look for.

Stay compliant and protected with daily updates on cybersecurity, data privacy, and federal oversight with our Cyber & Privacy newsletter, delivering up-to-the-minute intelligence Monday–SaturdaySubscribe here.

© PubKGroup 2024