Inside Cybersecurity

March 5, 2021

Daily News

Pentagon plans to conduct ‘gap analysis’ between FedRAMP and CMMC for reciprocity

By Sara Friedman / February 22, 2021

The Defense Department is working with the General Services Administration’s FedRAMP team to develop a “gap analysis” that will compare the cloud services program with the Pentagon’s Cybersecurity Maturity Model Certification initiative, according to DOD’s Stacy Bostjanick.

Developing reciprocity with other government and industry standards is something the Pentagon is exploring to “draw synergy so we don’t put companies in a place where they have to do multiple certifications,” Bostjanick said at an AFCEA event Friday.

Bostjanick said the CMMC...

Log in to access this content.

Not a subscriber? Sign up for 30 days free access to exclusive news and analysis on cybersecurity regulations and more.