Bostjanick: CMMC program moves forward as ‘deliberative’ process for rulemaking continues

Companies should continue preparing for the launch of the Pentagon’s Cybersecurity Maturity Model Certification program as the process to finalize rulemaking continues, according to program director Stacy Bostjanick, who spoke with Inside Cybersecurity in a wide-ranging interview.

“We are currently in the deliberative process and hoping to move into formal rulemaking imminently,” Bostjanick said. There are three rules in process -- one to finalize the NIST Special Publication 800-171 requirements in the 2020 interim final rule and two to...