News & Analysis as of April 30, 2025

National Institute of Standards and Technology

+ Follow

DoD Releases Final CMMC Program Rule, Formally Initiating Its Cybersecurity Program

Vinson & Elkins LLP on 11/22/2024

On October 15, 2024, the Department of Defense (“DoD”) released its final rule (the “Final Rule”) formally establishing the Cybersecurity Maturity Model Certification (“CMMC”) program, nearly three years after first...more

Department of Defense Delivers Highly Anticipated CMMC Proposed Rule

Pillsbury Winthrop Shaw Pittman LLP on 1/19/2024

The proposed rule requires contractors to make annual affirmations regarding their cybersecurity maturity, thus increasing their risk of False Claims Act Liability. The proposed rule allows for limited use of Plans of...more

Department of Defense Releases Long-Awaited CMMC Proposed Rule

Holland & Knight LLP on 12/28/2023

Two years after announcing the second iteration of the U.S. Department of Defense's (DoD) Cybersecurity Maturity Model Certification (CMMC) program, the DoD released its proposed rule that, if adopted, will implement the...more

Changes Coming to DOD’s Cybersecurity Maturity Model Certification under CMMC 2.0

Akin Gump Strauss Hauer & Feld LLP on 11/24/2021

On November 17, 2021, the U.S. Department of Defense (DOD) published an Advanced Notice of Proposed Rulemaking (ANPRM) previewing significant changes to its Cybersecurity Maturity Model Certification (CMMC) program.1 The...more

CMMC 2.0: DoD Scales Back Certification and Streamlines Cybersecurity Requirements for Defense Contractors

Miles & Stockbridge P.C. on 11/12/2021

On November 4, 2021, the U.S. Department of Defense (DoD) Office of the Under Secretary of Defense for Acquisition and Sustainment (OUSD(A&S)) announced Version 2.0 of the highly publicized Cybersecurity Maturity Model...more

5 Results

View per page