“We are moving forward, we're hoping by the first quarter of calendar year [2025] we'll be able to start enforcing this and putting this in contracts," Dave McKeown, Deputy CIO for the DoD, said.| Breaking Defense
At its most basic level, under CMMC 2.0, defense contractors and subcontractors that have access to controlled unclassified information (CUI) will be required to demonstrate the “maturity” of their cybersecurity programs against a set of increasingly advanced capabilities.| Breaking Defense
The new proposal includes new requirements for contracting officers, ensuring that parties bidding on Pentagon contracts are properly protecting sensitive information.| Breaking Defense