The Defense Department is surging ahead with efforts to get third-party assessor organizations certified for work under the Cybersecurity Maturity Model Certification program, but the process of setting up a structure for companies to be assessed and approved has many unanswered questions, according to two large defense industry groups. The National Defense Industrial Association and Aerospace Industries Association have worked closely with the Defense Department over the past year to provide input on the CMMC standards and are eagerly waiting...