The CMMC-ABs new website leans into conflicts of interest and blatantly false claims regarding accreditation.
The former architect of the doomed CMMC 1.0 cybersecurity program has resigned.
DODIG claimed they were unauthorized to release documentation, despite Oxebridge never having asked them to.
The Pentagon has scuttled the CISO position previously held by Arrington, and taken away control of CMMC from her cronies at OUSD A&S.
Arrington’s suspension remains in effect, while she is prohibited from re-filing a lawsuit in the matter.
The move suggests Federal prosecutors are preparing to move against senior officials at Cask.
The CMMC Accreditation Body’s promise to provide contract CMMC self-assessments would violate ISO 17021-1.
I sat down for a lively interview with US Army Major and cybersecurity expert Leslie Weinstein to discuss accreditation within the CMMC scheme.
Don’t panic, stop spending, avoid the sunk-cost fallacy, and pay attention to the critics who have been consistently right since Day One.
CMMC-AB may be allowed to credential trainers and assessors, but not accredit C3PAOs.
DoD’s Arrington Sues Federal Gov for Failure to Provide Her Due Process, Doesn’t Wait for Due Process
Complaint claims that after five months, no action was taken on Arrington’s security clearance suspension, but DoD procedures allow for a minimum processing time of six months, with no upper limit.
DOD CMMC Rep Confirms IG Investigation, Declines to Provide Updates on Reciprocity or “Home Inspection” Rule
The DOD won’t release updates on FedRAMP, ISO 27001 reciprocity with CMMC, nor provide the promised CIO ruling on inspections of private residences for CMMC compliance.