Robert Hill, founder and CEO of Cyturus, highlighted the importance of complying with regulatory requirements like the Department of Defense’s Cybersecurity Maturity Model Certification program in order to ensure the security of every link in the supply chain and protect tiny subsystems in U.S. defense platforms from cyberthreat actors.
In the article published on Carahsoft.com, Hill discussed how a small company that is not CMMC-compliant and produces a specific gasket for the F-35 fighter aircraft could make its manufacturing operation vulnerable to attacks by nation-state bad actors.
The chief executive explained how tools like the Cyturus Compliance and Risk Tracker platform could help organizations facilitate the compliance process.
“The proprietary Self-Guided Assessment module walks companies through their initial self-assessment to understand where their deficiencies are, establish a SPRS score, and identify areas that need remediation via development of a Plan of Action and Milestones and a System Security Plan,” Hill wrote.
The Cyturus founder discussed how the company’s CRT tool could help an organization seeking certification work with a registered practitioner align with a CMMC third-party assessment organization while maintaining complete control of its proprietary information and compliance evidence.
Hill noted that the CMMC program represents a paradigm shift, requiring companies to demonstrate “how they will continue meeting those requirements in a consistent manner for the next 36 months.”
