department of defense

Q&A with Sera-Brynn on the DoD Interim Rule, SPRS, and the November 30 Deadline that Isn’t Really a Deadline.

On September 29, 2020, the Department of Defense (DoD) released an interim rule to begin the implementation of its Cybersecurity Maturity Model Certification (CMMC) framework. The majority of the interim rule focuses on new requirements for confirming that contractors are currently in compliance the 110 security controls of National Institute of Standards and Technology (NIST)… Read more »

DoD Now to Require Cybersecurity Self-Assessments with New DFARS Rule

On September 29, 2020, the Department of Defense (DoD) issued an  interim rule to amend the Defense Federal Acquisition Regulation Supplement (DFARS). The interim rule implements the Cybersecurity Maturity Model Certification (CMMC) program. The rule introduces a new construct: the DoD Assessment Methodology.  Before contracts undergo a full CMMC review, this new construct will serve as… Read more »

CMMC Cometh

Tomorrow, September 29, 2020, the Department of Defense anticipates issuing an interim rule to amend the Defense Federal Acquisition Regulation Supplement (DFARS) to implement a DoD Assessment Methodology and Cybersecurity Maturity Model Certification framework in order to assess contractor implementation of cybersecurity requirements and enhance the protection of unclassified information within the DoD supply chain…. Read more »

Sera-Brynn Delivers New Way for Businesses to Monitor and Financially Recover from Cyberattacks – CHECKLIGHT™

SUFFOLK, Va., April 1, 2020 – Sera-Brynn, LLC today launched CHECKLIGHT, an innovative endpoint monitoring service designed for small and medium-sized businesses located anywhere in the United States and Canada. The monitoring service combines state-of-the-art cybersecurity technologies with artificial intelligence, machine learning, dynamic threat intelligence, and the expertise of DoD-trained security analysts. CHECKLIGHT is a… Read more »

CMMC Model 1.0 Released: DoD’s unified cybersecurity standard for future acquisitions

In a major effort to strengthen the cybersecurity posture of the hundred of thousands of Defense Industrial Base (DIB) subcontractors, the Department of Defense today released final Model Version 1.0 of the Cybersecurity Maturity Model Certification (CMMC) framework. This version replaces previously released versions 0.4, 0.6, and 0.7, which have been made available to the… Read more »

Getting Ready for CMMC | Recommended Resources and Links

The Department of Defense’s Cybersecurity Maturity Model Certification (CMMC) program will be a new contractual requirement for all DoD contractors. It will impact the 300,000 firms that make up the defense industrial base.  It will not be a self-attestation model, but rather a third-party certification and compliance model. In 2020, the DoD plans to finalize… Read more »

Cybersecurity Maturity Model Certification (CMMC) Version 0.7 Arrives!

  The Cybersecurity Maturity Model Certification (CMMC) Draft Version 0.7 is live and available here. Version 0.7 includes Level 4-5 practices and modifies some maturity processes and Level 1-3 practices. This draft is another step closer to the final version — CMMC 1.0. The CMMC will be a new contractual requirement for all DoD contractors. … Read more »

Cybersecurity Maturity Model Certification (CMMC) Version 0.6 Arrives

  The Cybersecurity Maturity Model Certification (CMMC) Draft Version 0.6 is live and available here. Draft version 0.6 includes CMMC Levels 1 – 3. Of note, “CMMC Levels 4-5 are not included in this release because public comments are still being addressed.”  The updates to CMMC Levels 4 – 5 are expected to be provided… Read more »

CMMC Listening Tour Event in Huntsville, Ala. to Feature Sera-Brynn Expert Heather Engel

The Office of the Under Secretary of Defense for Acquisition and Sustainment (OUSD(A&S)) has announced a new stop on its Cyber Security Maturity Model (CMMC) listening tour: the Cloud Security and Compliance conference. Hosted by Summit 7 Systems, the one-day conference will be held in Huntsville on August 27, 2019. Registration is available here. Presenting… Read more »

Pentagon to Unveil New Cybersecurity Maturity Model Certification (CMMC) for Defense Contractors

The Department of Defense announced that it is developing a new cybersecurity standard and certification for defense contractors. It is named the “Cybersecurity Maturity Model Certification” (CMMC). Notably, the intent of the CMMC is to improve cybersecurity deficiencies in the defense industrial base and secure the supply chain. The CMMC is expected to be based… Read more »