The Defense Department in the fall could have a decision on the status of the implementation of the Cybersecurity Maturity Model Certification program’s final rule, the chief executive officer of the program’s accreditation body said today. The Pentagon in September 2020 issued an interim final rule to implement CMMC and an internal review of the program was ordered in March. The internal review is one of three major ongoing policy activities that need to be finished before DOD sees “where...