By Lauren C. Williams
May 19, 2021
Calls for a certified baseline of cybersecurity seem to increase with every cyberattack. And the recent ransomware attack that shut down the East Coast s largest fuel pipeline, Colonial Pipeline, is no exception.
The Cybersecurity Maturity Model Certification program is one of several Defense Department efforts to improve both its own cyber defenses and those of its industry partners. CMMC has been touted as a potential standard that could expand beyond the Defense Industrial Base (DIB) to cover all government contractors. But the core CMMC program is still taking shape, and it s unclear how that will look in the future.
To embed, copy and paste the code into your website or blog:
Companies providing information technology products and services to U.S. government agencies are now required to notify such agencies of cyber incidents and meet specific cybersecurity standards. The executive order attempts to modernize the federal government’s cybersecurity defenses by “protecting federal networks, improving information-sharing between the U.S. government and the private sector on cyber issues, and strengthening the [United States]’ ability to respond to incidents when they occur.” The executive order is just one example of the Biden administration’s push to improve the nation’s data privacy and cybersecurity practices in response to the recent series of ransomware attacks.
Protecting Your Company Against Revenue Clawbacks: Preference Actions (Part 3 of 3) - This is the final part of our three-part series on revenue clawbacks. The scenario:.
By Adam Mazmanian
May 19, 2021
In the wake of infiltration of government and private networks through SolarWinds software and the ransomware attack on Colonial Pipeline, lawmakers are looking to reduce the exposure of federal and critical infrastructure systems to hacks.
The Pentagon’s Cybersecurity Maturity Model Certification program is designed to be one key line of defense. The program sets out five maturity models applicable to defense industrial base contractors based on the level of sensitivity of information stored in their systems. Under the program, obtaining a certification of compliance at the appropriate risk level is an allowable cost. However, the extent to which contractors may have to dig into their own pockets to obtain certification is a running concern so much so that Kathleen Hicks, the deputy secretary of defense, ordered a review of the program in March.
Celerium Announces Supply Chain Cybersecurity Education Program Featuring CMMC Insights Course prnewswire.com - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from prnewswire.com Daily Mail and Mail on Sunday newspapers.