New cyber-hardening mandates may be coming for defense firms 4 days ago Washington seems likely to take steps requiring the defense industrial base better harden against cyber attacks, two veterans of the Cyberspace Solarium Commission said Wednesday. (Getty Images) WASHINGTON ― Washington seems likely to take steps requiring the defense industrial base to better harden against cyberattacks, two veterans of the Cyberspace Solarium Commission said Wednesday. Speaking at the C4ISRNET Conference, the commission’s executive director, Mark Montgomery, said he foresees the panel’s recommendations that the Pentagon make cyber intelligence sharing and threat-hunting capabilities mandatory for suppliers will “kick into effect.”
INDUSTRY NEWS
Author: Uday Ali Pabrai, CISSP, CMMC RP, HITRUST CCSFP, MSEE, Security+
Date Published: 19 April 2021
Advanced persistent threats (APTs) require that organizations respond with active and credible cyberdefenses. This is the focus of Maturity Level 5 of the US Department of Defense (DoD) cybersecurity standard, the Cybersecurity Maturity Model Certification (CMMC). Maturity Level 5 focuses on the protection of Controlled Unclassified Information (CUI) and is the highest level of cybersecurity defined in the CMMC standard.
1 Maturity Level 5 requires an enterprise to standardize and optimize process implementation across the organization.
The CMMC standard is all about establishing cyberresilience in the supply chain. CMMC Maturity Levels 4 and 5 include practices to enhance the detection and response capabilities of an organization to address and adapt to the changing tactics, techniques and procedures (TTPs) used by APTs.
DoD Contractors Leverage SteelCloud Technology to Automate CMMC Compliance
News provided by
Share this article
Share this article
ASHBURN, Va., April 20, 2021 /PRNewswire/ SteelCloud LLC, a leading STIG and CIS compliance automation software developer, announced today that they now have a sixth contractor who has chosen to leverage its ConfigOS compliance software to automate the cyber hygiene requirements of the DoD s CMMC (Cybersecurity Maturity Model Certification) initiative.
CMMC is a DoD mandate that will require some 300,000 DoD contractors to be certified to a CCMC Level based on the information they process. CMMC Level 3 or higher carries significant configuration management and access system-level controls that can be automated using SteelCloud s patented software. It is estimated that more than 20,000 contractors will need to be certified at CMMC Level 3 or higher over the next four years.
Project 38 podcast marks 100 episodes -- Washington Technology washingtontechnology.com - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from washingtontechnology.com Daily Mail and Mail on Sunday newspapers.