The Pentagon is expected to include contract requirements by July for the Cybersecurity Maturity Model Certification 2.0, the compliance framework for vendors to use in documenting their cyberhygiene.
Igor Volovich, vice president of compliance strategy at software company Qmulos, discusses how successful cybersecurity risk management is based on data.
The following Q&A has been edited lightly for clarity.
What do contractors need to understand about CMMC 2.0?
The regulators are coming to a much stricter interpretation of the controls and demanding accountability for the accuracy in compliance reporting.
Look at Aerojet Rocketdyne. That case is looming large. You’ve got a ...
Learn more about Bloomberg Law or Log In to keep reading:
See Breaking News in Context
Bloomberg Law provides trusted coverage of current events enhanced with legal analysis.
Already a subscriber?
Log in to keep reading or access research tools and resources.