The accreditation body behind the Pentagon's Cybersecurity Maturity Model Certification program is suggesting changes to the proposed rule to implement the major initiative, including involving the Defense Department in the assessment appeals process and establishing consistency in conflict-of-interest requirements. The appeals process outlined in the proposed rule initially starts with a “separate person or panel” with the certified third-party assessment organization who has “no connection to the CMMC assessment,” Cyber AB CEO Matthew Travis said at a Feb. 27 “...
