Audit Process Remains A Mystery In DOD Cybersecurity Plan

By Daniel Wilson (February 5, 2020, 8:33 PM EST) -- The Pentagon's new cybersecurity requirements for defense contractors are raising concerns about how those standards will be implemented, with details missing on how contractors can get audited and certified.

While the U.S. Department of Defense heeded comments to ease up on its initial aggressive implementation timeline and clarify requirements for subcontractors, it remained silent on key parts of the certification process for contractors when it released its final Cybersecurity Maturity Model Certification, or CMMC, last week.

Questions about the process, such as who will audit the thousands of contractors that need to be certified for cybersecurity compliance, how they will be audited...

Stay ahead of the curve

In the legal profession, information is the key to success. You have to know what’s happening with clients, competitors, practice areas, and industries. Law360 provides the intelligence you need to remain an expert and beat the competition.

  • Access to case data within articles (numbers, filings, courts, nature of suit, and more.)
  • Access to attached documents such as briefs, petitions, complaints, decisions, motions, etc.
  • Create custom alerts for specific article and case topics and so much more!


Hello! I'm Law360's automated support bot.

How can I help you today?

For example, you can type:
  • I forgot my password
  • I took a free trial but didn't get a verification email
  • How do I sign up for a newsletter?
Ask a question!