On September 29, 2020, the Department of Defense (DoD) released an interim rule to begin the implementation of its Cybersecurity Maturity Model Certification (CMMC) framework. The majority of the interim rule focuses on new requirements for confirming that contractors are currently in compliance the 110 security controls of National Institute of Standards and Technology (NIST)… Read more »
SPRS
DoD Now to Require Cybersecurity Self-Assessments with New DFARS Rule
On September 29, 2020, the Department of Defense (DoD) issued an interim rule to amend the Defense Federal Acquisition Regulation Supplement (DFARS). The interim rule implements the Cybersecurity Maturity Model Certification (CMMC) program. The rule introduces a new construct: the DoD Assessment Methodology. Before contracts undergo a full CMMC review, this new construct will serve as… Read more »