SAN FRANCISCO -- Contracting attorney Robert Metzger offered two potential reasons behind why the Pentagon's process to issue a rulemaking implementing its Cybersecurity Maturity Model Certification program is delayed, following a panel discussion at an industry event here at the RSA conference. First, Metzger said, members of Congress have indicated they are concerned about the impact to small business and the Defense Department needs to do more to help them with compliance. “The Office of Procurement Policy doesn’t want to...