Pentagon publishes level two assessment guide for revamped CMMC program

By Sara Friedman / December 20, 2021 at 10:47 AM
The Defense Department has released the assessment guide for level two of its Cybersecurity Maturity Model Certification program, making changes to the initial model through the removal of processes as well as 20 controls that go beyond the initial standard developed by NIST. The level two guide is an update to the initial assessment publication for CMMC level three released in 2020. DOD announced significant changes to the CMMC program on Nov. 4, including the consolidation of the maturity levels...

Not a subscriber? Sign up for 30 days free access to exclusive, behind-the-scenes reporting on defense policy and procurement.

Log in to access this content.