Pentagon cyber chief David McKeown says military officials are focused on ensuring their systems that deal with sensitive data are held to standards "above and beyond" the Cybersecurity Maturity Model Certification framework that applies to defense contractors who handle controlled unclassified information. Rather than CMMC standards, which the Defense Department isn’t required to meet, McKeown told Inside Defense the DOD remains fixated on the up to 562 total controls for CUI from the National Institute of Standards and Technology...
