The Defense Department is in the early stages of determining whether it can work with industry partners to develop cloud service offerings that can help contractors meet Cybersecurity Maturity Model Certification requirements, according to Pentagon cyber chief David McKeown. The Pentagon’s CMMC program is focused on the handling of controlled unclassified information held by defense contractors. At CMMC level two, contractors must meet all of the 110 controls in NIST Special Publication 800-171 to achieve a certification. “In the CMMC...
