Department of Defense October 15, 2024 – Federal Register Recent Federal Regulation Documents

Cybersecurity Maturity Model Certification (CMMC) Program
Document Number: 2024-22905
Type: Rule
Date: 2024-10-15
Agency: Department of Defense, Office of the Secretary
With this final rule, DoD establishes the Cybersecurity Maturity Model Certification (CMMC) Program in order to verify contractors have implemented required security measures necessary to safeguard Federal Contract Information (FCI) and Controlled Unclassified Information (CUI). The mechanisms discussed in this rule will allow the Department to confirm a defense contractor or subcontractor has implemented the security requirements for a specified CMMC level and is maintaining that status (meaning level and assessment type) across the contract period of performance. This rule will be updated as needed, using the appropriate rulemaking process, to address evolving cybersecurity standards, requirements, threats, and other relevant changes.
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.