The Defense Contract Management Agency's process to conduct assessments for the Pentagon's Cybersecurity Maturity Model Certification program is adapting to meet the needs of stakeholders, according to Defense Department official John Ellis who provided an overview to Inside Cybersecurity on lessons learned in recent months. The assessments are conducted through DCMA's Defense Industrial Base Cybersecurity Assessment Center, which was formalized in 2019 to conduct assessments of defense contractors against NIST Special Publication 800-171. The Pentagon's CMMC program is largely...
