The Cybersecurity Maturity Model Certification Accreditation Body (CMMC-AB), which serves as the authorized training, credentialing and accreditation ecosystem, has selected SecureXperts as an approved vendor to participate in the certification, accreditation and licensing process for the companies that will play critical roles in the CMMC ecosystem. The link is listed here: https://www.cmmcab.org/marketplace.
Early this year, the U.S Department of Defense (DoD) released the first iteration of the Cybersecurity Maturity Model Certification (CMMC) framework, which requires DoD contractors and subcontractors to obtain third-party certification of their cybersecurity maturity. Full details are listed here: . https://www.acq.osd.mil/cmmc/
The CMMC highlights the growing concern among U.S. national security officials of possible cybersecurity breaches and data incursions from Chinese security and telecommunication equipment manufacturers. According to the Justice Department, more than 80% of economic espionage cases brought by federal prosecutors have involved China since 2012.
The DoD has recognized that cybersecurity is foundational to acquisition and should not be traded along with cost, schedule and performance moving forward. As part of this “Cyber Forward” strategy, SecureXperts will assist the CMMC developing training and curriculum development for certifiers and third-party assessors that validate a company’s cybersecurity maturity, or CMMC Certification level ranging from level 1 through level 5.
Future request for proposals issued by the DoD, GSA and other federal agencies will now come to contractors requiring a specific CMMC certification level. The DoD now allows cybersecurity assessments to be an “allowable expense” in providing contracts for award under the Defense Federal Acquisition Regulations (DFARS).
Some of the benefits provided by the CMMC will eventually flow down from DoDrelated contractors to regulated industries and critical infrastructure protection sectors. End users are now able to select government-validated products that have been verified by certified independent third-party CMMC auditors.
Darnell Washington, President/CEO of SecureXperts Incorporated stated, “for many years Security integrators that previously absconded their ability to address appropriate cybersecurity controls within their product catalog in the past now must establish compliance with a federal standard that finally has teeth”.
Ben Tchoubineh, Director, CMMC-AB Board of Directors, Chair, Training Committee stated, “We have been working really hard to develop this framework and build it from an idea into something real. CMMC has a huge potential to positively impact the world in that it will improve, finally after all these decades, the security posture of so many organizations doing work of great national security significance.”