The White House has announced an initiative that will make it mandatory for federal agencies to report compliance with cybersecurity regulations. This will be accomplished through a new software tool which will be released this month in a test version. The tool will collect information that is required under the Federal Information Security Management Act.
CenturyLink (NYSE: CTL) has received Federal Information Security Management Act certification that validates its network and security operations centers' capacity to implement recognized data security controls for U.S. government systems.
In my opinion, CMMC has nothing to do with supply chain management. CMMC is intended to serve as a verification mechanism to ensure appropriate levels of cybersecurity practices and processes are in place to ensure basic cyber hygiene as well as protect controlled unclassified information (CUI) that resides on the department’s industry partners’ networks.