DIB Secure Cloud Managed Services Pilot
Abstract
FY 2020 Accomplishments: Developed CMMC Framework to include the release of the CMMC Model v1.0 to the public on January 31, 2020. Incorporated comments from DoD stakeholders, DIB sector, and public on draft versions of the CMMC Model. Developed CMMC Assessment Guides and draft training material for candidate CMMC assessors. Drafted and submitted a proposed Defense Federal Acquisition Regulation Supplement (DFARS) rule to implement CMMC across the Department in a phased rollout. Signed Memorandum of Understanding and a no-cost contract with the CMMC Accreditation Body, a non-profit entity, that specifies their roles and responsibilities with respect to the training and credentialing of individual assessors, accreditation of third-party assessment organizations, and the issuance of CMMC certificates to DIB contractors. Initiated a task order to DISA for the design, development, testing, and operations of CMMC Enterprise Mission Assurance Support Service (eMASS) database and infrastructure. Completed pathfinder that assessed the ability of commercial third-party cybersecurity vendors to provide insights into the cybersecurity posture of DIB partners through the external scanning of public facing Internet Protocol assets. The pathfinder normalized and compared the cybersecurity risk scores provided by each of the three vendors, assessed their ability to provide insights into compliance/non-compliance with a subset of DoD security requirements, and evaluated the usability of the vendors’ platform and its ability to interface and port data to other systems.
Document Details
- Document Type
- Accomplishment
- Publication Date
- Oct 01, 2022
- Source ID
- ce8b7b72c7f93c7fc18267310e74f325