By Kyle Brasseur2023-12-28T16:28:00
The Department of Defense (DoD) released for comment a proposed rule setting guidelines for implementation of the Cybersecurity Maturity Model Certification (CMMC) program.
The proposal, published Tuesday, would “establish requirements for a comprehensive and scalable assessment mechanism to ensure defense contractors and subcontractors have … implemented required security measures” under the CMMC, which applies to federal contract information and controlled unclassified information.
Comments on the proposal are due by Feb. 26.
2025-03-28T14:22:00Z By Thomas Graham, CW guest columnist
Many small organizations within the Defense Industrial Base are struggling to meet the rigorous requirements validated through the Cybersecurity Maturity Model Certification, writes Thomas Graham, CISO at Redspin. If you haven’t been tracking it closely, CMMC was finalized in October, with an effective date of December 16, 2024.
2023-12-08T21:42:00Z By Adrianne Appel
Use of generative artificial intelligence by businesses will ramp up in 2024, as will risk of AI-driven cyberattacks and fraud, according to experts.
2023-08-23T20:17:00Z By Adrianne Appel
Data security and compliance are not one and the same but have enough overlap that organizations can take steps when building a data security program to move closer to achieving compliance.
2025-08-22T19:05:00Z By Adrianne Appel
Businesses operating in California will need to meet new, first-in-the-nation privacy requirements for cybersecurity, risk assessments, and automated decision-making technology, under a large expansion of rules by the state.
2025-08-18T17:44:00Z By Aly McDevitt
The U.S. Department of Justice has filed two lawsuits against the California Air Resources Board, claiming it no longer has the legal right to enforce strict emissions rules for heavy-duty trucks.
2025-08-14T15:13:00Z By Ruth Prickett
Navigating tariffs and sanctions is becoming a core part of compliance for many companies. As the U.S. and others use economic policies for political aims, compliance teams must adapt to this new geoeconomic trend.
Site powered by Webvision Cloud