In an Oct. 8, 2020 letter to the Defense Department and the Cybersecurity Maturity Model Certification Accreditation Body, the National Defense Industrial Association lists questions in nine areas that are of concern to its members on the implementation of the CMMC program.