Day

February 24, 2020

24 February 2020

DoD Issues Cybersecurity Maturity Model Certification Version 1.0

On January 31, 2020, the Department of Defense released its latest version of the Cybersecurity Maturity Model Certification (“CMMC”) for defense contractors.  Under the CMMC plan, DOD contractors will be required to obtain a cybersecurity rating from Level 1 through Level 5.  Self-certification will not be permitted.  Given the significant investment of industry resources the CMMC may require, the DOD eased some concerns by announcing that it would roll out the CMMC program out in stages.  A new Defense federal Acquisition Regulation Supplement (“DFARS”) clause is expected in the spring of 2020, and CMMC requirements are anticipated to be included in certain limited Requests for Information released starting June 2020.  Ultimately, all DOD contracts will include a minimum cybersecurity requirement by 2026. (more…)

EmailShare
XSLT Plugin by BMI Calculator