Tripwire’s Maurice Uenuma: CMMC Reflects DoD’s Seriousness to Address Supply Chain Cyber Weaknesses

Maurice Uenuma
Maurice Uenuma

The Department of Defense introduced the final version of the Cybersecurity Maturity Model Certification program in late January and Maurice Uenuma, vice president of federal at Tripwire, said CMMC is a key step to securing DoD’s supply chain, Signal Magazine reported Sunday.

“Perhaps the greatest benefit, at least at the outset, is that it clearly communicates the seriousness with which DOD intends to address weaknesses in supply chain cybersecurity, and its intention to leverage its vast regulatory and market powers to drive compliance,” Uenuma said of CMMC. “There is also the benefit of integrating and rationalizing several different standards … into a single framework. If this effort is ultimately successful, the lessons learned and market impact could reach far beyond the defense industrial base.”

The CMMC program, which aims to ensure that companies comply with DoD’s cybersecurity standards, is scheduled to take effect later this year and experts including Uenuma believe the Pentagon sets an aggressive timeline for the cyber framework’s implementation.

Uenuma noted that DoD should first conduct a pilot program to address potential issues associated with CMMC implementation. “The devil’s in the details. The specific metrics and measures will be very important,” he said. “Striking the right balance will be key, so a pilot program or focusing on a narrower set of initial suppliers or a subsegment may be the way to go.”

Potomac Officers Club will host its CMMC Forum 2020 on April 2. Click here to register for the event.

Katie Arrington, chief information security officer at the Office of the Assistant Secretary of Defense for Acquisition and a 2020 Wash100 Award recipient, will serve as a keynote speaker at the CMMC Forum 2020. She will address the CMMC’s timeline, how the certification process could change and will provide a memorandum of understanding with a newly established CMMC accrediting body.

A full expert panel will include Ty Schieber, senior director of executive education and CMMC-AB chairman of the University of Virginia and Richard Naylor of the Defense Counterintelligence and Security Agency (DCSA) among other members of the federal sector and industry.

Register here to join Potomac Officers Club for its CMMC Forum 2020 on April 2nd to learn about the impact DoD’s CMMC will have on cybersecurity practices, supply chain security and other aspects of the federal market.

You may also be interested in...

NEXT-C Johns Hopkins APL photo

Johns Hopkins APL Helps Equip DART Spacecraft With NASA-Made Propulsion Tech

Johns Hopkins University Applied Physics Laboratory has incorporated a propulsion technology built by NASA into a spacecraft designed to support the agency's demonstration of its first planetary defense capability.


CompTIA Receives DoD OK for Penetration Testing Certification

The Department of Defense has approved a CompTIA certification exam designed to measure cybersecurity skills necessary to conduct penetration testing and manage vulnerabilities in an information technology system.

50W Ka-band BUC

Gilat Subsidiary to Deliver Ka-Band Block Upconverter for Military Comms Program

Gilat Satellite Networks' Wavestream subsidiary has secured a delivery order of an undisclosed sum to provide a high-power 50-watt Ka-band block upconverter in support of a U.S. military communications program.