On January 31, 2020, the U.S. Department of Defense (DoD) released a new cybersecurity verification standard entitled “Cybersecurity Maturity Model Certification” (CMMC), which requires defense contractors to register under one of five cybersecurity levels to be an eligible supplier.
The CMMC will be implemented gradually over a five-year timespan and is meant to protect the DoD’s supply chain against “malicious cyber activity and intellectual property theft.”