DoD Publishes Interim Rule for CMMC, Opens Public Comment Period

The interim rule for the Cybersecurity Maturity Model Certification (CMMC) was posted in the Federal Register on Sept. 29, opening a public comment period for the amended regulation, which is scheduled to become effective November 30.

The Department of Defense (DoD) amended the Defense Federal Acquisition Regulation Supplement (DFARS) to help protect controlled unclassified information (CUI) in the defense industrial base (DIB) by a process of auditing cybersecurity practices of DIB companies.

“We’re at the point now where we have solid ground to stand on as we move through the CMMC rule,” said DoD’s Katie Arrington, the CISO in the department’s acquisition office, speaking at the ComDef Forum on Sept. 29. The rule, submitted as an unpublished document the day prior, was published in the Federal Register before her remarks.

Keep reading this article at: https://www.meritalk.com/articles/dod-publishes-interim-rule-for-cmmc-opens-public-comment-period/