CMMC 2 – What is now clear and what isn’t

Unlock the complexities of CMMC 2 in our upcoming webinar, "CMMC 2 – What is now clear and what isn’t."

As combat systems become more connected and reliant on data, the threat of cyberattacks on manufacturers is growing. The regulator has responded by sharpening the ruling on handling Controlled Unclassified Information (CUI) from the DoD, subject to defense contracts. The Cybersecurity Maturity Model Certification (CMMC 2.0) model has evolved to address more sophisticated threats to national security. Non-compliance could lead to exclusion from the right to bid for defense contracts. One of the most significant changes is the widening of the scope to tier suppliers.

Cybersecurity enforced on the supply chain

Managing risks related to the supply of parts and materials, especially for sensitive defense projects, has led to emphasis on tracking security gaps along the entire supply chain. The current CMMC 2.0 regulation is widened to include all ITAR-relevant suppliers of DoD contractors via flow-down requirements. Market observers report that approximately 300,000 businesses will be affected by CMMC 2.0 compliance. Many of them suppliers to defense manufacturers including Lockheed Martin, General Dynamics, RTX, Northrop Grumman, and Boeing.

This session will guide you through the new flow-down requirements, shedding light on what is now clear and identifying areas that remain ambiguous. Join us to gain valuable insights and stay ahead in the ever-evolving landscape of Aerospace & Defense compliance.

Dive deep into the nuances of the current regulations and discover what it means for ITAR-relevant suppliers working with Department of Defense (DoD) contractors.

Speakers