Latest News & Opinion on the ISO Certification Scheme
Leaked Document Appears to Show CMMC-AB Attempting to Justify Conflicts of Interest
The document appears to represent a “Q&A” between the CMMC-AB and the DOD in preparing defenses to the conflicts of interest complaints filed against it.
Complaint Filed Against Control Union for Alleged ISO 14001 Scope Violation
Control Union also threatens to charge complainants for “costs” when it clears itself of any complaint.
Public Call: IAF Must Suspend Support of Uyghur Abuses by China
The IAF’s role in supporting China’s humanitarian abuses of Uyghurs is called out.
How Q001’s “Quality Culture” Requirement Improves Upon the Quality Policy
Oxebridge Q001 moves beyond ISO 9001’s “Quality Policy,” providing a demonstrable means of proving a company has implemented a true culture of quality.
As Board Bleeds More Members, CMMC-AB Registration in SAM.gov Lapses
Ben Tchoubineh and Nicole Dean have both quit the CMMC-AB, as that group’s official government procuremen registration lapsed.
DoD Won’t Freeze CMMC Model, “Phase 2” Version Will Impact on Manufacturing Firms
The CMMC Program Management Office revealed that a major revision of the CMMC standard will include both IT and OT controls, thus impacting on machine shops and manufacturers.
IRS Confirms: CMMC-AB Does Not Hold Tax Exempt Status
The IRS has confirmed that the CMMC-AB does not hold tax-exempt filing status, contradicting official filings the body made in March of 2020.
IAF Suddenly Invents Rule Allowing “Documentation Only” Audits of CBs, But Not for ISO End Users
CBs can now mail in their homework to maintain accreditation, even as the same approach is prohibited for ISO 9001 certified companies.
ISO 9001 Certificate Issued to Russian Register Withdrawn After Oxebridge Complaint
URS has withdrawn an ISO 9001 certificate issued to its competitor, Russian Register, after a high-level Oxebridge complaint.
Oxebridge Launches Wiki for THE AUDITOR Comic Strip
Oxebridge has created an official wiki page for THE AUDITOR comic strip.
IAQG Mandates AS9100 Nonconformity Quotas, Ensuring Class Action Lawsuit
The latest release of AS9104/3 requires aerospace registrars to measure auditor performance based on “nonconformities per audit day.”
Parsing ISO 17021-1’s Melange of Procedure Callouts
The standard for certification bodies uses over 15 different terms to refer to “procedures,” making implementation a nightmare without third-party help.
From Bad to Worse: CMMC Accreditation Body Ignores Deadline on Ethics Complaint
The CMMC Accreditation Body has again ignored a formal complaint put to it, the latest alleging overt violations of its Code of Ethics by board members.
ISO Preps to Revise ISO 9001, Overriding International Vote Results
ISO has telegraphed its intent to revise ISO 9001:2015 over the objections of the world’s ISO members, further discrediting the myth that its standards are built on “consensus.”
Complaint Filed with CMMC-AB Alleging Ethics Violations by Board Members
Multiple current and former Board Members are alleged to be personally profiting from their roles in the CMMC-AB by selling CMMC related services or products.
Benefits of ISO 9001, Part 13: Clause 8.5.5 Post-Delivery Activities
Extracting tangible benefits from ISO 9001’s Clause 8.5.5 on “Post-Delivery Activities”
DoD Threats of False Claims Act Prosecutions in CMMC Scheme Are “Exaggerated”
Ironically, the Dept. of Defense is making false claims about its ability to prosecute False Claims Act lawsuits against defense contractors who fail to obtain CMMC.
Benefits of ISO 9001, Part 12: Clause 8.5.4 Preservation
Extracting tangible benefits from ISO 9001’s Clause 8.5.4 on “Preservation.”
Gross: ASQ Tries to Take Credit for COVID-19 Vaccine Distribution
Sigh… ASQ is trying to take credit for fixing a problem that was caused by a failure of quality to begin with.
Oxebridge Files Complaint Alleging Felony Fraud Led to CMMC-AB Contract Award
Documents submitted by the CMMC-AB to obtain a federal CAGE code included a false statement claiming the group was “tax-exempt” in March 2020.
Quality Digest Corrects Claims Made by IAF About CertSearch
QD’s editors stepped in with additional reporting to refute some false claims made by an IAF rep.
In Stunning Move, US DOD Hands CMMC Scheme Oversight to Foreign Actors
The no-bid contract requires the CMMC-AB to undergo peer evaluations by foreign auditors, granting them physical access to reports of US cybersecurity deficiencies.
Why CMMC’s “Reciprocity” With ISO 27001 Is A Bad Idea
“Reciprocity” with ISO 27001 essentially signals the surrender of CMMC, and invites corruption and Chinese interference.
IAF Resorts to Outright Lies to Promote CertSearch Website
A Quality Digest article falsely claims the CertSearch database is “nearly 100% reliable” and contains information from all ISO certification bodies.
How to Turn CMMC From Vaporware to a Functioning Scheme by Q4 2021
Four steps that can be done now to roll out a fully-functioning CMMC certification scheme.
IAQG OASIS Portal Down for “Unplanned Maintenance”
The official worldwide registry for AS9100 certifications, called OASIS, is down.
Greek CB Tried To Cover Up Usage of Accreditation Template Kit
Cosmocert altered documents and later falsely claimed they did not use pre-written policies.
Decades Later, Consultants Still Push Lie That “40-Day ISO 9001” is Impossible
The critics haven’t updated their script, and are still lying to clients to artificially inflate their ISO 9001 contract fees.
Company That Manipulated Test Data for Grenfell Fire Insulation Still Holds ISO 9001 from SGS
SGS continues to certify Celotex, who admitted to falsifying cladding test data.
A Few More Wrinkles Emerge Re: CMMC C3PAOs and ISO 17020 Accreditation
The scheme still hasn’t addressed who will accredit C3PAOs, nor what the scope of that accreditation will be.
Book Review: “Deciding” – Don’t Call It Risk Management
Review of “Deciding: A Guide to Even Better Decision Making” by Grant Purdy and Roger Estall.
Apparently, I’m On the SAE Advisory Board Now
Oxebridge founder Christopher Paris is now on the SAE Advisory Board… really.
Oxebridge Providing ISO 17020 Implementation for CMMC C3PAOs
CMMC Third Party Assessment Organizations will have to obtain ISO 17020 accreditation in order to meet a DOD demand.
Certificate Mill Guberman PMC Websites, YouTube Channel Shuttered, Claims Company “Out of Business”
Guberman PMC offered self-accredited ISO certificates, and relied on a campaign of defaming competitors, an effort which now appears entirely shut down.
CMMC News Roundup, December 2020
A collection of recent news and oversight activities related to the Cybersecurity Maturity Model Certification scheme.
