New Cybersecurity Requirements Will Let Contractors Send the Bill to the Government
As National Cyber Security Awareness Month begins, we are talking about the Cybersecurity Maturity Model Certification framework, or CMMC, and the bottom line.
In a recent interview, Katie Arrington the chief information security officer for the assistant defense secretary for acquisition, talked about how the new frameworks will not be verified using the honor system. All government contractors will need to be audited by an approved third party.
These audits will determine if a company is compliant or not. It will be a “yes” or “no” approval or denial to acquire business contracts.
As Arrington said in Air Force Magazine, “We know that security costs money... But we need to understand exactly what it is we’re paying for. The level-set of the CMMC will help us do that.”
Based on this information, costs should no longer be a concern or an obstacle to being cybersecurity compliant with NIST 800-171.
Don’t risk being denied a government contract.