Showing 28 Result(s)
Cyber, the DoD and CMMC

The DoD and the importance of Cyber, CMMC and NIST

On the 3rd of November 2020 myself, Rear Admiral William Chase (Senior Military Advisor for Cyber Policy to the Under Secretary of Defense for Policy/Deputy Principal Cyber Advisor to the Secretary), and John Weiler (Chairman of the CMMC Center of Excellence and CEO of the IT Acquisition Advisory Council) were invited to speak to the …

US Department of Defence

How will CMMC and DAM data be used by the Department of Defence for Contract awards?

With all intents and purposes the Interim Final Ruling published by the Department of Defence on the 29th of September 2020 will become affective on the 30th November 2020.  Requiring that contractors and subcontractors input their assessment of NIST SP 800 – 171 compliance and ultimately their CMMC certificates into the DoDs Supplier Performance Risk …

DFARS Interim Final Ruling: A complex road ahead for the international DIB and the deployment, oversight and assurance of NIST SP 800 – 171 and CMMC

On the 29th of September 2020 the US Department of Defence (DoD) released its Interim Final Ruling (ruling) for DFARS Case D041, effective 30th November 2020.  Improving the protection of Controlled Unclassified Information (CUI) and Federal Contract Information (FCI) across the DoDs Defence Industry Base (DIB) and closing gaps in the oversight and assurance of …

Capital Hill

Concerns raised by US Universities, as they write to the OUSD A&S seeking clarity on the application of CMMC to academic and research institutions.

As the CMMC debate continues, it is raising some interesting, difficult and dare I say it academic questions.  Several representative bodies for research institutions in the US have written to the Under Secretary of Defense for Acquisition and Sustainment (USD[A&S]).  Raising concerns over the implementation of CMMC and its financial impact on academic institutions during COVID …

Capitol Hill

Cyber security standards: An important subject for the US Senate and House Armed Services Committee

Cyber security is an important topic for discussion in 2021.  Whilst this years US elections will undoubtedly create some breathing space for regulation, the Senate and the House Armed Services Committee has set an agenda for discussion of CMMC in 2021.  CMMC is one component of the drive in the US for Supply chain security.  …

CMMC CoE and EU

Cybersecurity Maturity Model Certification (CMMC). Challenges and opportunities for contractors in complying with the US DoDs requirements

It won’t be long before the draft DFARS text for the US DoD CMMC programme is released for public consultation.  Whilst no one knows what it will say, the MoU between the Department of Defence and the CMMC AB is in the public domain.  The first round of training for CMMC provisional assessors has taken …

CMMC CoE

CMMC CoE and Parava sign MoU

Parava Security Solutions has signed an MOU with the Information Technology Acquisition Advisory Council (IT-AAC) and the CMMC Centre of Excellence (John Weiler CMMC-CoE, TBM, Agile Acquisition). Formed under agreement with the Cybersecurity Maturity Model Certification – Accreditation Body (CMMC AB). Parava is a cyber security advisory firm, with experience in providing strategic, tactical, and …