Complying With DOD’s Contractor Cybersecurity Rule

Law360 (October 15, 2020, 5:13 PM EDT) — On Sept. 29, the U.S. Department of Defense published a long-anticipated interim rule implementing its Cybersecurity Maturity Model Certification, or CMMC, program.[1]

The rule introduces a new mandatory construct, the DOD assessment methodology, to serve as an interim certification process before contractors undergo a full CMMC review. A full description of the interim rule and what it means for the DOD contractors follows. The interim rule becomes effective Nov. 30, although full implementation of the CMMC will not be achieved until 2025.

The interim rule amends the Defense Federal Acquisition Regulation Supplement to achieve phased implementation of both the newly required…

Stay ahead of the curve

In the legal profession, information is the key to success. You have to know what’s happening with clients, competitors, practice areas, and industries. Law360 provides the intelligence you need to remain an expert and beat the

Read More