Sara Friedman

Sara Friedman joined Inside Cybersecurity in February 2020. Previously, she covered government IT for GCN and education technology for THE Journal and Campus Technology. She graduated from Ithaca College with bachelor’s degrees in journalism and politics.

Archived Articles
Daily News | July 8, 2020

The General Services Administration has released a final request for proposals for small businesses that want to provide IT services to agencies that could have lasting repercussions for contractors wanting to do business with the Defense Department and civilian agencies, according to a leading contract lawyer.

Daily News | July 7, 2020

The National Institute of Standards and Technology has released a new draft to guide the Defense Department on how to define controlled unclassified information requirements for industry, in line with the maturity levels of the Pentagon's cyber certification program.

Daily News | June 18, 2020

The Cyberspace Solarium Commission is advocating for getting up to 20 recommendations from the group's report included in this year's defense policy bill, according to commission Executive Director Mark Montgomery, who says the creation of a national cyber director and a Joint Cyber Planning Cell within the Cybersecurity and Infrastructure Security Agency are among the top priorities.

Daily News | June 10, 2020

The Army is looking for industry solutions that are able to meet requirements of the Cybersecurity Maturity Model Certification program in a solicitation for its Assault Breacher Vehicle Remote Control System program, months ahead of when the first Defense Department contract solicitations with CMMC language will be released.

Daily News | June 8, 2020

More work is needed to define the policies and procedures behind the Pentagon's Cybersecurity Maturity Model Certification program that go beyond a memorandum of understanding with its accreditation body, according to a leading tech industry association.

Daily News | June 5, 2020

Roles and responsibilities of the Defense Department and the accreditation body for its Cybersecurity Maturity Model Certification program are detailed in a memorandum of understanding released this week, which spells out how government will work with industry to conduct cyber verification assessments for the defense industrial base.

Daily News | June 3, 2020

The Defense Department provided new details this week on the memorandum of understanding with an independent accreditation authority that will certify companies under the Cybersecurity Maturity Model Certification program.

The Insider | May 29, 2020

The independent accreditation body for the Pentagon's Cybersecurity Maturity Model Certification program is collecting information from potential vendors who are able to provide a platform for assessors to take their exams for certification.

Daily News | May 29, 2020

The Cybersecurity Maturity Model Certification Accreditation Body is developing standards for assessment that are adaptive to changes made to "source documents" coming from the Defense Department, according to CMMC AB board member Regan Edens.

The Insider | May 11, 2020

The accreditation group for the Pentagon's Cybersecurity Maturity Model Certification program says details released on its provisional program for auditors and assessors were published "inadvertently" on its website, and crafting the requirements and application details for the program is still in process.

Daily News | May 11, 2020

The independent accreditation body developing standards for auditors and assessors under the Defense Department's Cybersecurity Maturity Model Certification program has circulated information on how the provisional program will work, including fees and an initial structure for the selection process for third-party assessors.

Daily News | May 11, 2020

The Pentagon is moving aggressively under its cybersecurity certification program to create a framework and structure for contractors, vendors, and suppliers to get up to speed on what they will need to do to get certified, according to a top Defense Department official, but the process of changing acquisition rules to make the program effective could be delayed.

Daily News | April 30, 2020

Auditors under the Cybersecurity Maturity Model Certification will be prohibited from consulting with companies they are certifying in an effort to create "checks and balances," according to DOD acquisition Chief Information Security Officer Katie Arrington.

Daily News | April 10, 2020

The Defense Department is surging ahead with efforts to get third-party assessor organizations certified for work under the Cybersecurity Maturity Model Certification program, but the process of setting up a structure for companies to be assessed and approved has many unanswered questions, according to two large defense industry groups.

Daily News | April 7, 2020

The Senate Armed Services Committee's move to paper hearings has slowed efforts to fold Cyberspace Solarium Commission recommendations into the fiscal year 2021 defense authorization bill, as the Senate panel's leaders want to hear directly from members of the high-profile advisory panel in person, according to a committee staffer.

Daily News | April 7, 2020

The Defense Department is setting an aggressive schedule to get up to 1,500 contractors certified under the Cybersecurity Maturity Model Certification program by the end of this year, but the timing could shift on expected deliverables amid the response to the COVID-19 health crisis, according to public statements and remarks by sources.

Not a subscriber? Sign up for 30 days free access to exclusive, behind-the-scenes reporting on defense policy and procurement.