DoD CMMC Requirements Begin Rollout November 30

February of 2020 seems like a long time ago, for many reasons. But that was when the official version of the Cybersecurity Maturity Model Certification (CMMC) standards were released. Recently, the DoD issued an interim rule that will update the DFARS to implement the assessment methodology and CMMC framework for DoD procurements as well as add a new requirement for cybersecurity assessment under the NIST SP 800-171 framework. Here are some of the key points.

Continue reading

CMMC Update: Details on Certification Infrastructure and COTS Products

The framework for the DOD’s Cybersecurity Maturity Model Certification (CMMC) process continues to move forward. Here’s an update on what’s currently happening with the CMMC that includes a few more details the DOD and the independent CMMC Accreditation Body have recently released about the nuts and bolts of the certification process.

Continue reading

DOD Cybersecurity Certification Standards Are Official

Well, if you’d been waiting for DOD’s Cybersecurity Maturity Model Certification (CMMC) standards to stop being “draft” before you took a look at them, the wait is over! Version 1.0 (no longer marked draft) was released last week. DoD has indicated it will begin using CMMC requirements in requests for information starting June 2020.

Let’s take a look at some of the highlights from the recent release.

Continue reading

Government Contractor Cybersecurity: Q&A with the Director of the Kansas SBDC Cybersecurity Center

Whether you are an active small business federal contractor, or an entrepreneur still getting your business off the ground, you are going to need a cybersecurity plan. Many DoD contractors, in particular, face a pending deadline to comply with NIST 800-171, as mandated by DFARS 252.204-7012.

The Kansas SBDC Cybersecurity Center for Small Business wants to help.

Continue reading