The accreditation body behind the Pentagon's cyber certification program is requiring assessors and consultants to sign a "Code of Professional Conduct," which details confidentiality protections and the "proper use" of information collected from contractors. "The Code of Professional Conduct (CoPC) sets expectations for those [Cybersecurity Maturity Model Certification]-AB credentialed individuals and accredited entities that are authorized to deliver CMMC services under license from the CMMC Accreditation Body," the document produced by the CMMC AB states. The CoPC "also sets expectations...
