Industry groups emphasize potential regulatory burden in response to Pentagon CMMC proposed rule

Two trade associations representing companies in the defense industrial base are raising concerns over the potential for burdensome regulation following the introduction of a massive Defense Department proposed rule to implement the major revamp of the Cybersecurity Maturity Model Certification program.

The proposed rule was published today in the Federal Register. It offers the first official in-depth look into what will be required for companies that will need a CMMC certification as a condition of having a contract with...