JD Supra

Additional Analysis on DOD’s Final Rule for the Cybersecurity Maturity Model Certification Program

WHAT: The U.S. Department of Defense (DOD) this month published the second of two final rules needed to begin phasing in the long-awaited Cybersecurity Maturity Model Certification (CMMC) Program.
JD Supra

A Contractor’s Primer on New DoD Cybersecurity Certification Requirements

A new Department of Defense rule requires contractors to undergo internal and sometimes third-party cybersecurity assessments related to how they handle sensitive information. A phased rollout will ...

DoD audit flags weaknesses in cybersecurity certification vetting, heightening compliance risks

Diana Shaw of Wiley Rein LLP discusses a recent Department of Defense Office of Inspector General audit that identified ...
CU Boulder News & Events

Updated Controlled Unclassified Information (CUI) policy and standards

On Sept. 10, the Department of Defense (DOD) published a final rule (CMMC Final Rule) implementing the Cybersecurity Maturity Model Certification (CMMC) program for DOD contractors and subcontractors.