Industry groups weigh in on CMMC costs, guidelines for assessment as Pentagon interim rule takes effect

Industry groups across a wide range of sectors are asking the Defense Department to provide more details on how its new cyber certification program will impact government contractors.

An interim rule establishing DOD’s Cybersecurity Maturity Model Certification program and setting up new requirements for defense contractors under National Institute of Standards and Technology Special Publication 800-171 went into effect on Monday.

The Pentagon this week publicly released industry comments on the rule, addressing several key concerns including costs for compliance...