Popular Voices

Official: Defense Contractors to Meet Different CMMC Requirements

Official: Defense Contractors to Meet Different CMMC Requirements

Katie Arrington, chief information security officer for assistant secretary for defense acquisition, has clarified that contractors will face different levels of Cybersecurity Maturity Model Certification requirements depending on the information they need to secure. Speaking at a Washington Technology event, the 2020 Wash100 winner said the Department of Defense will release requests for information notices to inform contractors which parts of a contract require different certification levels.

Stressing DoD’s cautious approach, she said subcontractors will only meet CMMC requirements ranging from levels one or two, Fedscoop reported.

However, Arrington explained that CMMC level two certifications will be rare and will serve as a bridge for companies needing to fulfill level one or level three certifications.

Prime contractors are expected to meet CMMC level four and level five certifications to continue handling sensitive information. 

Potomac Officers Club Logo
Sign up for Potomac Officers Club's daily briefing
Receive updates on events and relevant news
Posted on by Adrian Rosenberg

Category: Popular Voices

Related Articles

Deputy Defense Secretary Nominee Vows to Further DOD’s Use of AI

Deputy Defense Secretary Nominee Vows to Further DOD’s Use of AI

February 03, 2021

Current AI Systems Not Trustworthy Enough, Marine Commandant Says

Current AI Systems Not Trustworthy Enough, Marine Commandant Says

February 03, 2021

Navy Establishes DevSecOps Platform to Ensure Secure Software Development

Navy Establishes DevSecOps Platform to Ensure Secure Software Development

February 01, 2021