Pentagon officials outline changes to cyber certification program, rulemaking processes

By Sara Friedman / November 10, 2021 at 11:26 AM
Cyber leaders at the Defense Department provided an overview of key changes to their Cybersecurity Maturity Model Certification program, CMMC 2.0, at a "Town Hall" on Tuesday with details on upcoming rulemaking processes and how the effort will allow for more public engagement. CMMC 2.0 simplifies the Pentagon’s cyber certification program by narrowing the focus to three levels and removing extra maturity practices and 20 additional controls that go beyond NIST Special Publication 800-171. Level one is for federal contract...

Not a subscriber? Sign up for 30 days free access to exclusive, behind-the-scenes reporting on defense policy and procurement.

Log in to access this content.