CMMC Updates May 2021

Share This Post:

May 2021 CMMC Updates

May 2021 was a big month for developments with the Cybersecurity Maturity Model Certification. We’ve collected the highlights for you in this month’s CMMC Update.

 
President Biden issued an executive order last month for the Commerce Department to develop preliminary guidelines for supply chain security within six months. We weighed in on what that means for the supply chain and how tools like MARS Suite are poised to help.
Read Now
 
In its May newsletter, the CMMC Accreditation Body announced a new VP and released an updated Frequently Asked Questions list. The update to the FAQs is intended to help satiate the industry while the continued development of the CMMC standards delays the CMMC-AB’s ability to answer more in-depth technical and policy-related questions.
Read Now
 
The DoD’s Defense Industrial Base Cybersecurity Assessment Center (DIBCAC) has officially approved the first company to proceed in the process of becoming a Certified Third Party Assessment Organization. As long as the CMMC-AB grants the company C3PAO status, we could have our first certified assessor in the very near future. 
Read Now

Commentary on if CMMC Compliance Would Have Stopped the SolarWinds Attack

This article shared some interesting commentary from Rear Admiral William Chase on how even if a CMMC-compliant system wouldn’t stop a SolarWinds style attack from happening, it would make detection and mitigation a lot easier.
Read Now 
 
Cybersecurity and Infrastructure Security Agency (CISA) leadership is making comments that they are watching CMMC and its implementation to see what ideas they can implement into their own programs. In other words, the civilian side of the federal government could soon face many of the same compliance requirements we are seeing with CMMC.
Read Now

Is Your Smart Watch Covered by CMMC?

We don’t always think about the smaller connected devices that may factor into our CMMC compliance. This quick article lays out situations when a smart watch would or wouldn’t fall within the scope of the CUI security requirements in CMMC and similar standards.
Read Now

More from the blog

Learn More About Upcoming Events