2022 Year End CMMC Program Status Update

2022 saw a lot of changes to the CMMC program, and even to the government’s approach to supply chain cybersecurity. In this post, we summarize some of the key DoD-related changes in an effort to help contractors understand what they will likely encounter in 2023.

CMMC: Prime Contractors’ Perspectives Recording Available

The CMMC Information Institute recently hosted an event in which we were joined by Nicole Dean, CISO of Accenture Federal Services; David Kessler, Vice President and Associate General Counsel IT & Cybersecurity of BAE Systems; and Michael Connelly, Assistant Compliance and Supply Chain Risk Management Program Manager and Chief Strategist for Classified Policy and Programs for the Johns Hopkins University Applied Physics Laboratory. We discussed a range of topics including how their organizations are preparing for CMMC, how their roles as subcontractors shape the way they interact with their own subcontractors, and how organizations should approach dealing with DFARS 252.204-7019 and 252.204-7020 (the requirements that contractors handling CUI submit self-assessment scores to SPRS). A recording of the event is available for our Communities members via the link below.