Thursday 26-March the CMMC accreditation body made a public post that they have executed a memorandum of understanding with a nonprofit corporation that will server as the accreditation body for its Cybersecurity Maturity Model Certification program.
Katie Arrington, chief information security officer in DoD’s acquisition office said both parties collaborate virtually amid the COVID-19 pandemic and remain on track to implement contractor cybersecurity verification processes with authorized independent third-party assessment organizations.
CMMC will require all defense contractors to hire third-party assessors that have been accredited by the board and that will certify they meet one of the model’s levels of cybersecurity. If a contractor does not receive a CMMC certification, it will not be allowed to bid on defense contracts.