The federal government recently revealed considerable changes to the Cybersecurity Maturity Model Certification (CMMC), a set of cybersecurity standards intended to protect sensitive information in the defense contracting sector.
“With the announced CMMC 2.0 changes, we are optimistic about the long-term viability of the third-party assessments,” Guernsey Director of Cybersecurity Consulting Tim Fawcett said. “The new iteration shows the DoD’s commitment to supporting small and medium businesses.”
The CMMC 2.0 could be required as early as Q4 of 2022. Guernsey has created a free CMMC Gap Analysis Self-Assessment to help companies measure their current ability to comply with CMMC.