A survey conducted by Redspin found that over half of respondents did not feel prepared for CMMC's requirements, which will go into effect by mid-2025.

As part of the new role, McKeown will stand up and helm the DOD CIO's new Cybersecurity Center of Excellence.

The publication of the final rule moves to establish the CMMC 2.0 program in federal law.

The Defense Department’s Cyber Crime Center announced that it is setting up an official Defense Industrial Base-Vulnerability Disclosure Program (DIB-VDP).

The Defense Industrial Base Cybersecurity Strategy outlines four goals as well as corresponding objectives that cover activities from fiscal 2024 to 2027.

The projections were included in a proposed rule for Cybersecurity Maturity Model Certification that was published in the Federal Register.

DIB contractors that use Microsoft cloud services may only need to meet a small portion of CMMC's 110 controls after the cloud provider passed its voluntary assessment.

The NIST standards have been part of federal law for contractors for several years, but until now, contracting officers have been "lackadaisical" about enforcing them, said the…

The Pentagon's officials overseeing the development of CMMC are planning to meet soon to address potential requirements for managed service providers under the program.

In a new report, GAO found that the DOD only met 78% of the 110 CMMC 2.0 requirements for systems that manage controlled unclassified information.