Chief information security officers who work with the U.S. Department of Defense must understand and comply with the Cybersecurity Maturity Model Certification requirements, but even organizations that do not work with the government can learn from the CMMC.
In early 2020, the U.S. Office of the Under Secretary of Defense for Acquisition and Sustainment released its CMMC documentation that organizations must comply with when they contract with the Department of Defense (DoD). Chief information security officers (CISOs) must consider and document their IoT security vulnerabilities, plus how IoT devices within their infrastructures collect, transmit and store data, to achieve …
