CMMC 2.0 to pare down cybersecurity requirements for contractors
Updated: Nov 22, 2021
Source: FEDSCOOP
The Department of Defense’s cybersecurity compliance program for contractors will be pared down in scope and expectations, according to an acquisition regulation document.
The Cybersecurity Maturity Model Certification (CMMC) will no longer require every contractor to get a third-party certification if they do not touch controlled unclassified data, a change that could reduce the cost of compliance for thousands of contractors.
Under the new CMMC model, which is known as CMMC 2.0, the number of security tiers is being shrunk from five to three. Novel CMMC maturity practices will also be eliminated from the standard.
Click HERE to read the rest of the article.
Recent Posts
See AllSource: Federal News Network New numbers from the Bureau of Labor Statistics are adding to concern that inflation is going to be with us...
Source: GovExec Lawmakers advanced a bill on Wednesday that would limit the federal government’s contracting with companies that are...
Source: MASS TRANSIT MAG The Connections Marketplace (CMP) was launched Feb. 23 by the U.S. Department of Transportation’s (USDOT) Office...
Comentários