Stacy Bostjanick, director of the Cybersecurity Maturity Model Certification policy within the office of the defense undersecretary for acquisition and sustainment, said the Department of Defense will issue in late March the training guides for CMMC to help vendors comply with certification requirements, Signal Magazine reported Thursday.
The CMMC framework has five levels ranging from basic cyber hygiene to highly advanced practices and Bostjanick said companies doing business with DoD should at least be certified at Level 1.
Bostjanick said at an AFCEA NOVA Chapter event that the Pentagon plans to launch 15 CMMC practices between this year and 2021 and then increase it to 479 practices in 2024 and 2025.
Katie Arrington, chief information security officer at the Office of the Assistant Secretary of Defense for Acquisition and a 2020 Wash100 Award recipient, will serve as a keynote speaker at the CMMC Forum 2020. She will address the CMMC’s timeline, how the certification process could change and will provide a memorandum of understanding with a newly established CMMC accrediting body.
A full expert panel will include Ty Schieber, senior director of executive education and CMMC-AB chairman of the University of Virginia and Richard Naylor of the Defense Counterintelligence and Security Agency (DCSA) among other members of the federal sector and industry.
Register here to join Potomac Officers Club for its CMMC Forum 2020 on April 2nd to learn about the impact DoD’s CMMC will have on cybersecurity practices, supply chain security and other aspects of the federal market.