When we say certification for the maturity model of cybersecurity, we are referring to the next phase in the efforts of the Sector of Defense to appropriately secure the DIB or Defense Industrial Base. You may not know it yet, but the Sector of Defense announced last month that it would be creating cybersecurity assessment certification and model program. The said announcement was viewed as a signal given to every sector to end the celebratory period.
Different from the previous years, getting a contract from experts won’t only accept an SSP as well as a POA&M as compliance for DFARS 252 point 204 to 7012. What happens now is that contractors are evaluated in accordance with the application of definite technical control, aside from the policies and documentation they have. Not only that, we want you to know that the evaluations of the contractors are will result from a stage of certification that goes from one to five, five being the most protected of all the levels. What this means is that when you company is certified highly, it will become qualified to bid on many deals.
Based on the facts we get from the Headquarters of the Defense Under Secretary, the certification for maturity model of Cybersecurity requirements will affect all the subcontractors. Furthermore, we want you to know that the Headquarters of the Defense Under Secretary mandates all future RFP’s to have a CMMC level notwithstanding if they are handling CUI or Controlled Unclassified Information.
In the presentation of the certification for maturity model of cybersecurity, they begin by binding the thoughts of DIB with its present cybersecurity state to the report of the MITRE from late two thousand eighteen. The report given by MITRE which is called Deliver Uncompromised state that almost all government contractors are not meeting the requirements of DFARS 7012 and so much more are not understanding the meaning of meeting the regulations. The conference is not only about giving reports, it is about raising awareness regarding those contractors who are tied to the government who are not doing their responsibilities credible and legibly. We also want you to know about how the report allows the government to know who among the contractors tied to them remain loyal and credible in their work and must be given the certification for maturity model of cybersecurity.
The said certification is very crucial for all contractors tried to the government because having it gives them authority to make qualified bids on the projects coming from the government and other industries. If a company has this, it only goes to show how they are abiding by the rules and regulations set by the government.