DoD Video Provides Overview of CMMC Proposed Rule

By Scott M. McAuliffe, CPA, CISA, CFE, Risk Advisory Services Partner

DoD Video Provides Overview of CMMC Proposed Rule

The DoD’s Cybersecurity Maturity Model Certification (CMMC) 2.0 program, which aims to enhance the cybersecurity of the defense industrial base (DIB), has been published into the Federal Register as a Proposed Rule. The CMMC 2.0 program simplifies the requirements for contractors and aligns them with widely accepted standards. To help defense contractors and other interested parties understand the changes and provide feedback, the DoD recently released an informational video on the proposed rule that explains the nuances, complexities, and importance of CMMC 2.0.

Key Takeaways from the DoD CMMC Video:

  • Purpose of the CMMC
  • Overview of the Proposed CMMC Program
  • CMMC Waivers can only be Initiated by DoD Program Manager
  • CMMC Scoring Methodology and Use of Plan of Actions and Milestones (POA&Ms)
  • Timing for CMMC Compliance (4 Phases)

"Watch Now" Button

Keiter’s Cybersecurity team will continue to monitor the rollout of the CMMC program and update you on new information and changing requirements for DoD contractors. Keiter is an RPO and has a team of cybersecurity consultants that are ready to assist DoD contractors with CMMC scoping, gap assessment, and other readiness consulting services, powered by our custom CMMC project management and documentation tools.

Questions? Contact us | 804.747.0000


U.S. Department of Defense

Share this Insight:

About the Author

Scott M. McAuliffe

Scott M. McAuliffe, CPA, CISA, CFE, Risk Advisory Services Partner

Scott leads the Firm’s Risk Advisory Services practice, which focuses on providing internal audits, cybersecurity and information technology consulting, Sarbanes-Oxley assistance and System and Organization Controls (SOC) Exams. Scott focuses on providing his clients with cost effective solutions to build strong, efficient internal control systems/practices that support their strategic objectives. In 2021, Scott achieved the Cybersecurity Maturity Model Certification (CMMC) Registered Practitioner (RP) status in order to provide CMMC services to Department of Defense prime and subcontractors.

More Insights from Scott M. McAuliffe

The information contained within this article is provided for informational purposes only and is current as of the date published. Online readers are advised not to act upon this information without seeking the service of a professional accountant, as this article is not a substitute for obtaining accounting, tax, or financial advice from a professional accountant.


Contact Us