Yesterday, the OMB’s Office of Information and Regulatory Affairs (OIRA) announced that it had received a notice of proposed rulemaking (NPRM) from the DOD on “Cybersecurity Maturity Model Certification (CMMC) Program”. According to the Spring 2023 Unified Agenda entry for the rulemaking:
“DOD is proposing to implement the
Cybersecurity Maturity Model Certification (CMMC) Framework, to help assess a Defense Industrial Base
(DIB) contractor’s compliance with and implementation of cybersecurity
requirements to safeguard Federal Contract Information (FCI) and Controlled
Unclassified Information (CUI) transiting non-federal systems and mitigate the
threats posed by Advanced Persistent Threats--adversaries with sophisticated
levels of expertise and significant resources.”
Posts
No comments:
Post a Comment