Miscellaneous
Before the end of the year, the Defense Department intends to finalize a rule change that will require any contractor it engages with to have obtained a certification of its cybersecurity practices from an approved external auditor. The program—known as Cybersecurity Maturity Model Certification—looks to eventually cover 300,000 contractors and subcontractors, many of which are anxiously waiting for the costs and details. Nextgov’s Mariam Baksh dives into the issue with DOD’s Katie Arrington, CEO of the Professional Services Council David Berteau, senior vice president of policy for the Information Technology Industry Council Gordon Bitko and principal director of strategic programs at the National Defense Industrial Association Corbin Evans.