The accreditation body behind the Cybersecurity Maturity Model Certification program is planning to revise a draft process document released last month after it was roundly criticized for being overly complex and prescriptive…
In an Aug. 24 letter to Travis, the Coalition for Government Procurement argued the draft CAP “adds more burden and expense to an already complex process.” The coalition says it has more than 300 members, and 25% are small businesses…
Many critiques have taken issue with its detailed description of how a CMMC Third-Party Assessment Organization (C3PAO) should prepare for an assessment and negotiate with the company seeking its services.
“When the CAP is revised, it should be more compact, expressed more simply and clearly, and it should avoid prescription of micro steps that the C3PAOs do not need,” the Coalition for Government Procurement wrote in its letter… Read the full article here.
