DOD rule establishes cyber compliance regime ahead of full CMMC implementation

By Sara Friedman / October 30, 2020 at 12:06 PM
The Pentagon will require government contractors to submit a self-assessment of their compliance with the 110 controls in National Institute of Standards and Technology Special Publication 800-171 starting Nov. 30, establishing a new cyber regime for contractors under the Defense Department that will have a wide-ranging impact on the DOD supply chain. The interim rule published Sept. 29 sets up the requirements for DOD's Cybersecurity Maturity Model Certification program, which will be rolled out over a five-year period. In the...

Not a subscriber? Sign up for 30 days free access to exclusive, behind-the-scenes reporting on defense policy and procurement.

Log in to access this content.