1 source · first reported 2h ago
The Department of Defense has halted the cybersecurity requirements for CMMC Phase 2 due to bureaucratic and burdensome issues on the industrial base. CIO Kirsten Davies stated that the current instantiation of CMMC has become too complex. This decision aims to simplify the process and reduce the burden on the industrial base.
The halt of CMMC Phase 2 cybersecurity requirements is significant as it affects the Department of Defense's efforts to enhance the security of its supply chain and protect sensitive information. This decision may have implications for the defense industry and its ability to meet cybersecurity standards.
How this story unfolded across sources, oldest first.