MITRE’s Cyber Resiliency Engineering Framework Aligns With DoD Cyber Maturity Model Cert

April 26, 2024 at 05:44PM MITRE’s CREF Navigator now includes the US Department of Defense’s CMMC, helping DIB engineers strengthen supply chain resilience against cyber attacks. The tool aligns with NIST SP 800-171 and CMMC Level 3, providing a searchable, visualized framework for informed decision-making in cyber solutions. The freely available tool can be customized … Read more

CISO Corner: DoD Regs, Neurodiverse Talent & Tel Aviv’s Light Rail

February 9, 2024 at 05:59PM CISO Corner is Dark Reading’s weekly digest featuring tailored articles for security operations readers and leaders. This week’s issue covers topics such as exploiting SEC rules, the shift to managed security services, cyber defenses in the Tel Aviv railway project, government and tech giants’ pledge against spyware, and the importance … Read more

CMMC Is the Starting Line, Not the Finish

February 1, 2024 at 10:09AM The Department of Defense’s Cybersecurity Maturity Model Certification (CMMC) is a significant nudge for companies in the defense industrial base and critical infrastructure to enhance cybersecurity. However, achieving CMMC compliance alone may not safeguard against sophisticated threats such as China’s PLA Unit 61398. To truly protect against cyber threats, companies … Read more

Pentagon Wants Feedback on Revised Cybersecurity Maturity Model Certification Program

December 29, 2023 at 07:54AM The US Department of Defense has proposed a rule for the Cybersecurity Maturity Model Certification (CMMC) program, seeking public feedback. The program aims to ensure defense contractors and subcontractors implement security measures to protect federal contract information and controlled unclassified information. The revision allows for self-assessment, emphasizes cooperation with industry, … Read more