cmmc 2.0

CMMC 2.0 and the possibility of a cyber service: 2025 preview  

2025 may be a telling year for the fate of the Pentagon's new CMMC 2.0 program.

Pentagon’s cybersecurity mandate CMMC 2.0 likely to survive under Trump

Even for a political party that campaigns on cutting regulations, Pentagon and industry figures say the next Republican administration will likely weigh security over deregulation.

CMMC 2.0 final rule released: New compliance standards set to begin next year

CMMC 2.0 introduced a third-party assessment dependent on contractor's CUI capacity.

Survey shows very few DoD contractors ‘fully’ ready for CMMC 2.0 ahead of 2025 rollout

"We have a really a kind of crisis of cybersecurity or lack of within the defense industrial base," CyberSheath CEO Eric Noonan told Breaking Defense.

Pentagon submits new proposed rule to implement CMMC 2.0

The new proposal includes new requirements for contracting officers, ensuring that parties bidding on Pentagon contracts are properly protecting sensitive information.

DoD and Congress should walk away from CMMC

In this op-ed, William Greenwalt of the American Enterprise Institute lays out reasons why the DoD and Congress should move away from CMMC 2.0.

CMMC 2.0 on track to start early 2025

“We are moving forward, we're hoping by the first quarter of calendar year [2025] we'll be able to start enforcing this and putting this in contracts," Dave McKeown, Deputy CIO for the DoD, said.

New proposed rule for CMMC 2.0 lays out security requirements, raises some eyebrows

At its most basic level, under CMMC 2.0, defense contractors and subcontractors that have access to controlled unclassified information (CUI) will be required to demonstrate the “maturity” of their cybersecurity programs against a set of increasingly advanced capabilities.