The Defense Department plans to finalize in November its first final rule for the Cybersecurity Maturity Model Certification program amending Title 32 of the Code of Federal Regulations, according to the latest unified agenda and regulatory plan. DOD is “finalizing requirements [to] ensure defense contractors and subcontractors have, as part of the Cybersecurity Maturity Model Certification (CMMC) Program, implemented required security measures for Federal Contract Information (FCI) and add new Controlled Unclassified Information (CUI) security requirements for certain priority programs,”...