DoD Releases Draft Version 0.7 of Cybersecurity Maturity Model Certification (CMMC) Model

December 17, 2019

The United States Department of Defense (DoD) Office of the Under Secretary of Defense for Acquisition and Sustainment (OUSD(A&S)) is currently working alongside the Defense Industrial Base to increase cybersecurity measures that will protect sensitive data. The protection of Intellectual Property (IP) has become a priority due to the high cost of malicious cyber threats. It’s estimated that cyber threats and theft cost the U.S. $57-$109 Billion dollars in 2016 alone, with the main cause being a poor system of protection for IP.

The current system of sharing IP between multiple contractors makes it an easier target than the DoD would like, and the OUSD(A&S) is working with stakeholders to develop the Cybersecurity Maturity Model Certification (CMMC). The CMMC is a DoD certification process that will combine various cybersecurity standards to combat cybersecurity threats by laying out a certification process and best practices to aid the protection of IP. This version of the CMMC is for public review, while version 1.0 will be released by the end of January.

To read the full version 0.7 of the CMMC, click here.