Several other regulatory steps and Congress' 60-day period to review the defense industrial base's new cybersecurity standard still loom before it takes effect. The Defense Department on Friday ...

To combat cyber theft and better safeguard government contractors, the Department of Defense has introduced a pivotal protection: the Cybersecurity Maturity Model Certification (CMMC) 2.0 framework.

The Department of Defense’s Cybersecurity Maturity Model Certification is more than a compliance checklist. It is, in my view, a strategic transformation designed to strengthen the entire defense ...

While you can’t transfer ultimate accountability for compliance, you can strategically outsource significant portions of the technical work required to achieve CMMC compliance. The divide between what ...

The importance of safeguarding the hardware, software and systems relied on by the Department of Defense (DoD) needs no explanation. Like state and local governments, the DoD relies on a diverse array ...

The Cybersecurity Maturity Model Certification (CMMC) is a framework developed by the U.S. Department of Defense (DoD) to enhance cybersecurity measures across the defense industrial base (DIB), and ...

The Time Is Now for Defense Contractors To Get Compliant. If you work for a defense contractor or subcontractor responsible for handling controlled unclassified information (CUI) and/or federal ...

On September 9, 2025, the Department of Defense (DOD) released its long-anticipated final rule implementing the Cybersecurity Maturity Model Certification (CMMC) program. As discussed previously, this ...

The Cybersecurity Maturity Model Certification (CMMC) is a cybersecurity standard introduced in 2020 to ensure that defense contractors and subcontractors protect Controlled Unclassified Information ...

The 11th hour for getting systems in line with the Cybersecurity Maturity Model Certification 2.0 rules required to bid on federal Department of Defense contracts has already come and gone. Now, it’s ...

Perform a gap analysis to compare existing practices against NIST SP 800-171 requirements. Define the scope by determining where Controlled Unclassified Information (CUI) resides within your ...

The Defense Department on Friday released the final rule for its Cybersecurity Maturity Model Certification program, but this is just one of several final steps until CMMC goes into force. DOD will ...