Sara Friedman

Sara Friedman joined Inside Cybersecurity in February 2020. Previously, she covered government IT for GCN and education technology for THE Journal and Campus Technology. She graduated from Ithaca College with bachelor’s degrees in journalism and politics.

Connections
Archived Articles
Daily News | August 12, 2020

A leading professor at the Defense Acquisition University is urging Defense Department commands and acquisition offices to hold off on adding requirements related to the Pentagon's cyber certification program into their contract opportunities.

Daily News | July 31, 2020

Members of the Cyberspace Solarium Commission are urging Congress to consider expanding the Pentagon's Defend Forward strategy to review the current state of military cyber capabilities and incorporate new ways to engage with the defense industrial base.

Daily News | July 29, 2020

The Defense Department has issued guidance for its procurement units on how to process and review waiver requests for contractors who wish to continue using banned equipment and services from Chinese companies Huawei and ZTE.

Daily News | July 27, 2020

Booz Allen Hamilton is working with clients and its own subcontractors to help prepare for the Pentagon's Cybersecurity Maturity Model Certification program through identifying gaps and assisting with remediation.

Daily News | July 21, 2020

The independent accreditation body behind the Pentagon's Cybersecurity Maturity Model Certification program has formally opened up applications for a range of certifications, after a month-long soft launch which generated approximately 300 organization and 775 individual registrations.

Daily News | July 17, 2020

The Defense Department is expected to publish a proposed acquisition rule in July that is needed to implement the Cybersecurity Maturity Model Certification program, according to a DOD official, although it's unclear whether a planned public hearing will be held on the proposal.

The Insider | July 14, 2020

The Defense Department has issued an interim rule to ban contractors who use equipment and services from Chinese companies Huawei and ZTE from obtaining government contracts.

Daily News | July 8, 2020

The General Services Administration has released a final request for proposals for small businesses that want to provide IT services to agencies that could have lasting repercussions for contractors wanting to do business with the Defense Department and civilian agencies, according to a leading contract lawyer.

Daily News | July 7, 2020

The National Institute of Standards and Technology has released a new draft to guide the Defense Department on how to define controlled unclassified information requirements for industry, in line with the maturity levels of the Pentagon's cyber certification program.

Daily News | June 18, 2020

The Cyberspace Solarium Commission is advocating for getting up to 20 recommendations from the group's report included in this year's defense policy bill, according to commission Executive Director Mark Montgomery, who says the creation of a national cyber director and a Joint Cyber Planning Cell within the Cybersecurity and Infrastructure Security Agency are among the top priorities.

Daily News | June 10, 2020

The Army is looking for industry solutions that are able to meet requirements of the Cybersecurity Maturity Model Certification program in a solicitation for its Assault Breacher Vehicle Remote Control System program, months ahead of when the first Defense Department contract solicitations with CMMC language will be released.

Daily News | June 8, 2020

More work is needed to define the policies and procedures behind the Pentagon's Cybersecurity Maturity Model Certification program that go beyond a memorandum of understanding with its accreditation body, according to a leading tech industry association.

Daily News | June 5, 2020

Roles and responsibilities of the Defense Department and the accreditation body for its Cybersecurity Maturity Model Certification program are detailed in a memorandum of understanding released this week, which spells out how government will work with industry to conduct cyber verification assessments for the defense industrial base.

Daily News | June 3, 2020

The Defense Department provided new details this week on the memorandum of understanding with an independent accreditation authority that will certify companies under the Cybersecurity Maturity Model Certification program.

The Insider | May 29, 2020

The independent accreditation body for the Pentagon's Cybersecurity Maturity Model Certification program is collecting information from potential vendors who are able to provide a platform for assessors to take their exams for certification.

Daily News | May 29, 2020

The Cybersecurity Maturity Model Certification Accreditation Body is developing standards for assessment that are adaptive to changes made to "source documents" coming from the Defense Department, according to CMMC AB board member Regan Edens.

The Insider | May 11, 2020

The accreditation group for the Pentagon's Cybersecurity Maturity Model Certification program says details released on its provisional program for auditors and assessors were published "inadvertently" on its website, and crafting the requirements and application details for the program is still in process.

Daily News | May 11, 2020

The independent accreditation body developing standards for auditors and assessors under the Defense Department's Cybersecurity Maturity Model Certification program has circulated information on how the provisional program will work, including fees and an initial structure for the selection process for third-party assessors.

Daily News | May 11, 2020

The Pentagon is moving aggressively under its cybersecurity certification program to create a framework and structure for contractors, vendors, and suppliers to get up to speed on what they will need to do to get certified, according to a top Defense Department official, but the process of changing acquisition rules to make the program effective could be delayed.

Daily News | April 30, 2020

Auditors under the Cybersecurity Maturity Model Certification will be prohibited from consulting with companies they are certifying in an effort to create "checks and balances," according to DOD acquisition Chief Information Security Officer Katie Arrington.

Not a subscriber? Sign up for 30 days free access to exclusive, behind-the-scenes reporting on defense policy and procurement.