Cybersecurity, Privacy, & AI

Trending Now
What Business Leaders Need to Know About Cybersecurity Certification and Enforcement in 2025–2026 • NRC Efficiency Plan to Reuse DOE, DoD Data Met With Skepticism • Closed Briefing Sets Stage For House Hearing On Anthropic’s Mythos and Cyber Risks • CISA, G7 Partners Release AI Software Bill of Materials Guidance • OMB to Refresh the Federal IT Dashboard
Protests & Claims Newsletter Cyber & Privacy Newsletter Compliance & Enforcement Newsletter Development Newsletter Transforming Procurement Newsletter
Published on February 5, 2020 Cyber

Workforce Specialist to DOD: Sweat the Small Stuff Rolling out CMMC

Workforce Specialist to DOD: Sweat the Small Stuff Rolling out CMMC

Simone Petrella, CEO of CyberVista – which certifies many of the Defense Department’s security personnel – approves of the approach taken by the Cybersecurity Maturity Model Certification, but warns that if the program’s designers don’t take time to spell out specific requirements, things could all fall apart.

The plan is to have independent auditors overseen by a nonprofit accreditation body use the model in conjunction with assessment guides to certify whether contracting applicants have the “maturity” of security needed to protect the data they would be handling. Petrella says those guides need to flesh out what proof is needed to demonstrate conformity with a certain level of maturity, so the auditors know what to look for.

Stay compliant and protected with daily updates on cybersecurity, data privacy, and federal oversight with our Cyber & Privacy newsletter, delivering up-to-the-minute intelligence Monday–SaturdaySubscribe here.

© PubKGroup 2024