The Defense Department has published a revised guide for level one of its Cybersecurity Maturity Model Certification program, detailing practices companies must achieve to reach compliance through conducting a self-assessment of their security measures. The level one self-assessment guide reflects changes made to the program in CMMC 2.0. Under the revamp, the Pentagon eliminated the third-party assessment requirement for level one and will require companies to self-attest annually. Level one is focused on the protection of federal contracting information and...
