Mark Berman, communications committee chair for the accreditation body for the Department of Defense’s Cybersecurity Maturity Model Certification program, said the group aims to finalize the prerequesites, application process and fees for potential third-party CMMC assessors on or about June 1, Federal News Network reported Friday.
Berman, who is also founder and CEO of risk management software provider FutureFeed, told the publication in an interview that CMMC-AB was in the final preparation stage after spending three to four months of work to establish an assessor training system.
He added that the accredition body coordinated with government stakeholders to ensure that training requirements are “affordable, consistent and clear to the entire industry.”
The CMMC program could initially employ 60 third-party assessment organizations and 70 individual assessors that either work under the program or as independent contractors, the report noted.
Katie Arrington, chief information security officer for the Department of Defense’s acquisition office and 2020 Wash100 winner, told Federa; News Radio in an email that DoD also intends to require ISO 17020 certification for C3PAOs to address potential conflicts of interest.
Potomac Officers Club will host its CMMC Virtual Forum 2020 on June 24th. Click here to register for the event.
Arrington, will serve as a keynote speaker at the CMMC Forum 2020. She will address the CMMC’s timeline, how the certification process could change and will provide a memorandum of understanding with a newly established
CMMC accrediting body.
A full expert panel will include Ty Schieber, CMMC-AB chairman, and Richard Naylor of the Defense Counterintelligence and Security Agency.
Register here to join POC’s CMMC Virtual Forum 2020 on June 24th to learn about the impact DoD’s CMMC will have on cybersecurity practices, supply chain security and other aspects of the federal market.