Construction Cost Management (CCM) was first made aware of upcoming cybersecurity changes for Defense Industrial Base (DIB) companies back in 2018. These cybersecurity changes are in response to significant compromises of sensitive defense information in DOD contractor information systems. The Cybersecurity Maturity Model Certification (CMMC) initiative will affect all the 300,000 plus DOD contractors that make up the DIB. CMMC will bring unified cybersecurity standards and best practices to DIB contractors and will help reduce the risk of specific types of cyber threats. It will include five tiers of technical security requirements for different companies ranging from basic cyber hygiene practices to advanced and optimized security practices to detect and defend against advance persistent threats. CMMC compliance will be assessed and certified by third parties, and all DOD contractors are expected to be certified before the end of 2025.
Since learning about changes to cybersecurity standards back in 2018, CCM has been taking measured steps to improve our cybersecurity for controlled unclassified information. In 2020, the COVID-19 pandemic accelerated our cybersecurity timeline to support our team’s new remote work structure. At this time, CCM has already implemented higher-level cybersecurity measures to protect controlled unclassified information (CUI), and we will continue to update our practices and standards as more information about the 2025 CMMC certification mandate becomes available. Moreover, CCM makes a concerted effort to remain up-to-date and agile against advanced persistent threats and all other forms of cyber attack to protect all project information, including CUI.
You can find more information about the Office of the Under Secretary of Defense for Acquisition and Sustainment’s Cybersecurity Maturity Model Certification, its impact on your company, and the 2025 certification mandate at the links below.
For more information about Construction Cost Management’s CMMC updates and its impact on your project, please Contact Us.