CMMC's 'father' warns companies not to wait for final rule

The final rule for this new cybersecurity standard for the defense industrial base is months away, but the author of its founding principles sternly says get to work now.

DHS looks to cyber self-assessments over CMMC model

DHS is considering how it might use self-assessments for vendors to measure their cyber hygiene—an approach that would set it apart from the Defense Department’s plans for third-party assessments.

Why vendors can't wait for CMMC to raise their cyber standards

"The current geopolitical climate...should have companies thinking about how they are currently defending themselves against cyber attacks," a defense official said on Thursday.