Sara Friedman

Sara Friedman joined Inside Cybersecurity in February 2020. Previously, she covered government IT for GCN and education technology for THE Journal and Campus Technology. She graduated from Ithaca College with bachelor’s degrees in journalism and politics.

Connections
Archived Articles
Daily News | December 1, 2020

The accreditation body behind the Pentagon's cyber certification program is requiring assessors and consultants to sign a "Code of Professional Conduct," which details confidentiality protections and the "proper use" of information collected from contractors.

The Insider | November 25, 2020

The accreditation body behind the Pentagon's Cybersecurity Maturity Model Certification program has launched a new section of its website dedicated to providing contact information for certified practitioners and consultant companies.

Daily News | November 24, 2020

The Defense Department is planning to release its assessment guide for the Cybersecurity Maturity Model Certification program next week, outlining the details for how companies will be evaluated for maturity levels one through three.

Daily News | November 20, 2020

Lockheed Martin is working with its suppliers to get details on their efforts to reach compliance with current and upcoming cybersecurity regulations from the Pentagon.

Daily News | November 18, 2020

Two leaders from National Institute of Standards and Technology-funded centers focused on the manufacturing sector are expressing concerns on whether small businesses will be prepared for implementation of the Pentagon's cyber certification program on Dec. 1.

Daily News | November 11, 2020

The Defense Contract Management Agency will give contractors the opportunity to make updates on their compliance with NIST Special Publication 800-171 in the Pentagon's Supplier Performance Risk System, according to agency leader John Ellis.

Daily News | November 10, 2020

Cloud service providers Microsoft and Amazon are working on solutions to help contractors reach compliance with the Defense Department's Cybersecurity Maturity Model Certification program through a shared responsibility model.

Daily News | October 30, 2020

The Pentagon will require government contractors to submit a self-assessment of their compliance with the 110 controls in National Institute of Standards and Technology Special Publication 800-171 starting Nov. 30, establishing a new cyber regime for contractors under the Defense Department that will have a wide-ranging impact on the DOD supply chain.

Daily News | October 29, 2020

The Defense Department is working with the Cybersecurity Maturity Model Certification Accreditation Body to develop a process for companies to dispute their cyber assessment results and get an objective ruling from the Pentagon's lead contracts agency.

Daily News | October 22, 2020

The Defense Department has set a deadline for the accreditation body behind the Pentagon's cyber certification program to establish a contractual relationship with DOD by the end of this month.

Daily News | October 22, 2020

The Defense Department is in the process of determining which contracts will be featured in the first-year rollout of its Cybersecurity Maturity Model Certification program, according to leading Pentagon acquisition officials.

Daily News | October 16, 2020

The National Defense Industrial Association is asking the Defense Department and the accreditation body behind its Cybersecurity Maturity Model Certification program for additional guidance on issues ranging from the assessment process to costs for certification.

Daily News | October 15, 2020

The Information Technology Industry Council is looking for details from the Defense Department on how the Pentagon will handle the implementation of DOD's Cybersecurity Maturity Model Certification based on an interim rule currently out for public comment.

Daily News | October 8, 2020

The Defense Department will issue a new policy as part of its Adaptive Acquisition Framework focused on cybersecurity to help program managers understand the processes and practices needed throughout the acquisition process, according to senior DOD officials.

Daily News | October 7, 2020

Defense Department acquisition Chief Information Security Officer Katie Arrington says the defense industrial base should come together to create a model for the Pentagon's cyber certification program that buys down risk, instead of creating division and "unnecessary angst" on social media.

Daily News | October 2, 2020

The Defense Department released an interim rule this week to implement its Cybersecurity Maturity Model Certification program with a section on estimated costs for each maturity level, but experts say the actual costs will depend on many factors yet to be determined.

Daily News | September 30, 2020

An interim rule released this week by the Pentagon raises issues about the transparency around audit results from assessors and who will have access to the information under the Defense Department's landmark cyber certification program, according to supply chain attorneys.

Daily News | September 28, 2020

The Defense Department has released the interim final rule for its Cybersecurity Maturity Model Certification program, marking a major shift in how the Pentagon will evaluate cybersecurity for contractors who make up the defense industrial base.

Daily News | September 23, 2020

Rep. Jim Langevin (D-RI), a cybersecurity leader in Congress, says he is monitoring the Defense Department's work to "operationalize" the Cybersecurity Maturity Model Certification program, which is facing criticism over the rollout of the accreditation process for assessors.

Daily News | September 17, 2020

The Defense Department is working on a guide to help industry and the acquisition community understand how to handle controlled unclassified information, addressing a foundational component of the Pentagon's Cybersecurity Maturity Model Certification program.

Not a subscriber? Sign up for 30 days free access to exclusive, behind-the-scenes reporting on defense policy and procurement.