The Cybersecurity Maturity Model Certification or CMMC, is an big topic of concern for companies serving within the Defense Industrial Base (DIB). But whether you supply products, services, or people to the federal government or not, we are also seeing cyber vulnerabilities put commercial businesses at the top of news headlines. DHS recently issued guidance that pipeline backers are required to report potential and confirmed cybersecurity incidents to the Cybersecurity and Infrastructure Security Agency (CISA), mandating that pipelines designate a cybersecurity coordinator to report cyber-attacks. So we are now even seeing remnants of CMMC flood into the commercial sector.
While CMMC has already received criticism due to small businesses required to adhere to the same standards as large contractors, the reality is that cyber attacks will only continue, and any company doing work in the U.S. should be cautious if there cyber policies and procedures are not up to snuff. Our conversation with Vince Scott highlights what companies should and shouldn't do as CMMC is fully implemented.
Hosted on Acast. See acast.com/privacy for more information.
