CMMC final rule issued by the Pentagon - What does this mean to defense contractors?

Event description

The Defense Department recently released the final rule for the long-awaited Cybersecurity Maturity Model Certification (CCMC) program, further paving the way for CMMC requirements to show up in contracts starting next year.

The final CMMC program rule has been released for public inspection. 

The rule establishes the mechanisms for the CMMC program. The goal of CMMC is to verify whether defense contractors are following cybersecurity requirements for protecting critical defense information. Many contractors will be required to receive a third-party audit under the program, a significant departure from the current regime of relying on self-attestation.

The final rule released establishes the CMMC program and processes into law. Separately, the Pentagon published a proposed CMMC acquisition rule this past summer. The comment period on the proposed acquisition rule closed Oct. 14.

What does this mean for businesses that contract with the Department of Defense?  Join us for this free webinar Tuesday, December 3, 10 am and hear from cybersecurity experts.