The Professional Services Council is calling for the Defense Department to do further analysis on potential costs for contractors and their suppliers to comply with the Cybersecurity Maturity Model Certification program before finalizing proposed regulations. “PSC believes DOD’s understanding is incomplete with regard to industry’s investment timeline and outlay for CMMC compliance. The estimated implementation costs cited in the proposed rule largely undervalue the true costs companies will incur to meet and maintain compliance standards,” the contracting industry group says...
