Tag Archives: CMMC

National Institute for Standards and Technology Releases Draft of NIST SP 800-172

By Susan B. Cassidy, Ashden Fein, Ryan Burnette and Darby Rourick on Posted in Cybersecurity, Defense Industry
The National Institute for Standards and Technology released the draft of NIST Special Publication 800-172 (“NIST SP 800-172”) on July 6, 2020.  This draft special publication succeeds the prior draft NIST SP 800-171B that NIST published in June 2019, and operates as a supplement to the NIST SP 800-171 controls that federal contractors generally must … Continue Reading

A Closer Look at Version 1.0 of DoD’s Cybersecurity Maturity Model Certification

By Susan B. Cassidy, Ashden Fein, Samantha Clark, Ryan Burnette and Darby Rourick on Posted in Cybersecurity, Defense Industry, Supply Chain
On January 31, the Department of Defense (“DoD”) released Version 1.0 of its Cybersecurity Maturity Model Certification (“CMMC”).  This is the fourth iteration of the CMMC that DoD has publicly released since it issued the first draft in October, and it is intended to be the version that auditors will be trained against, and that … Continue Reading

DoD Announces the Release of CMMC Version 1.0

By Susan B. Cassidy, Ashden Fein, Samantha Clark, Ryan Burnette and Darby Rourick on Posted in Cybersecurity, Defense Industry
On Friday January 31, 2020, Ellen Lord, Under Secretary of Defense for Acquisition and Sustainment, Kevin Fahey, Assistant Secretary of Defense for Acquisition, and Katie Arrington, the Chief Information Security Officer for the Department of Defense (“DoD”), briefed reporters on the release of the Cybersecurity Maturity Model Certification (“CMMC”) Version 1.0.  We have discussed draft … Continue Reading

DoD Releases Version 0.7 of Its Cybersecurity Maturity Model Certification

By Susan B. Cassidy, Samantha Clark and Ryan Burnette on Posted in Cybersecurity, Defense Industry, Procurement Policy
On December 13, the Department of Defense (“DoD”) released the latest version of its Cybersecurity Maturity Model Certification (“CMMC”).  This is the third iteration of the draft model that DoD has publicly released since it issued the first draft in October.  (We previously discussed Version 0.4 and Version 0.6 of the CMMC in prior blog … Continue Reading

DoD Releases Version 0.6 of its Cybersecurity Maturity Model Certification

By Susan B. Cassidy, Samantha Clark and Ryan Burnette on Posted in Cybersecurity, Defense Industry, Procurement Policy
On November 7, the Office of the Assistant Secretary of Defense for Acquisition released Version 0.6 of its draft Cybersecurity Maturity Model Certification (CMMC) for public comment. The CMMC was created in response to growing concerns by Congress and within DoD over the increased presence of cyber threats and intrusions aimed at the Defense Industrial … Continue Reading

DoD Releases Public Draft of Cybersecurity Maturity Model Certification and Seeks Industry Input

By Susan B. Cassidy, Samantha Clark and Ryan Burnette on Posted in Cybersecurity, Defense Industry, Government Contracts Regulatory Compliance, Supply Chain
On September 4, the Office of the Assistant Secretary of Defense for Acquisition released Version 0.4 of its draft Cybersecurity Maturity Model Certification (CMMC) for public comment.  The CMMC was created in response to growing concerns by Congress and within DoD over the increased presence of cyber threats and intrusions aimed at the Defense Industrial … Continue Reading
LexBlog