December Newsletter
CMMC is here to Stay
DoD officially posted the final rule for the highly anticipated Cybersecurity Maturity Model Certification (CMMC) 2.0 program to the Federal Register. The new standards will begin implementation for defense contractors in early-to-mid 2025.
Companies should actively work toward meeting NIST 800-171 requirements, which have been contractually mandated since 2016 under DFARS 252.204-7012. CMMC 2.0 formalizes many of these existing requirements, and contractors should prepare for security assessments to ensure compliance.