Membership Meeting 06-28-2023

posted in: Blog, Meetings, Uncategorized | 0

Topic: Cybersecurity Maturity Model Certification (CMMC) 

DoD’s Cybersecurity Maturity Model Certification (CMMC) Program was designed to provide increased assurance to the DoD that a DIB contractor can adequately protect sensitive unclassified information (i.e., FCI and CUI) at a level commensurate with the risk, and accounting for information flow down to its subcontractors in a multi-tier supply chain.  CMMC was initially implemented as an interim DFARS rule in September 2020 (DFARS Case 2019-D041).  In March 2021, in response to over 850 public comments, the program was modified and streamlined to CMMC 2.0.  The revised CMMC Program aligns with existing cybersecurity models. Once implemented through the rulemaking process, when applicable through acquisitions vehicles, CMMC requirements will be required for prime contractors and their subcontractors. While the rule is being finalized, it is important to continue to prepare now!  Come learn more about CMMC 2.0 and recommended next steps.

Speaker: Dawn M Greenman, Program Manager Cybersecurity Compliance for Johns Hopkins Applied Physics Laboratory (JHU/APL)

Dawn M Greenman is Program Manager Cybersecurity Compliance for Johns Hopkins Applied Physics Laboratory (JHU/APL).  In this position, she oversees the cybersecurity compliance and supply chain risk management strategy across the organization. Since 2013, she has ensured JHU/APL’s compliance with DFARS 7012 and NIST SP 800-171. During this time, she developed relationships with the small business community and learned of the unique challenges small businesses had meeting the cybersecurity requirements. Ms. Greenman became an advocate for small businesses. She helps lead working groups with DoD and industry to develop strategies to help small businesses improve the protection of controlled unclassified information.

Through JHU/APL, Ms. Greenman also worked for 3 ½ years with DoD CIO and DoD Office of Sustainment and Acquisition to develop and support the Cybersecurity Maturity Model Certification (CMMC) Program.

Ms. Greenman holds an undergraduate degree in Information Systems with a concentration in Homeland Security and an Executive Masters of Business Administration from The University of Maryland Robert H. Smith School Of Business.  She is a Certified Information Security Professional (CISSP) and holds the GIAC Security Essentials (GSEC) certification.