CISA supply-chain task force briefed by DOD on aggressive schedule for contractor certification

The Cybersecurity and Infrastructure Security Agency task force on supply-chain security was briefed by a Defense Department official who laid out an aggressive schedule for the Pentagon's plan to certify the cybersecurity practices of contractors, with final revisions expected in December and a “transition” to implementation in January.

DOD's Cybersecurity Maturity Model Certification program will establish a “go/no-go decision” for Pentagon acquisition officials based on whether a contractor meets the specific certification requirements spelled out in a request for proposal,...