The Department of Defense (DoD) has issued a request for information for the “long-term implementation, functioning, sustainment, and growth” of the Cybersecurity Maturity Model Certification (CMMC). (FedBizOps.gov, October 3, 2019)
Last month, DoD issued version 0.4 of the CMMC. Contractors may now see the cybersecurity standards required when working on projects with controlled but unclassified information. CMMC will assist DoD to secure more than 300,000 organizations. (Fed Scoop, October 4, 2019)
The accreditation body does not directly perform the assessments but manages third-party organizations that do. It is a nonprofit that utilizes “revenues generated through dues, fees, partner relationships, conferences, etc.” to fund the work. The deadline to submit feedback is October 21, 2019. (FedBizOps.gov ibid)
We’d be glad to discuss this RFI with you. Just give us a call.