Pentagon unveils cybersecurity standards for defence acquisition

05 February 2020

The US Department of Defense (DoD) officially unveiled its new standards and processes, which acquisition officials will use to determine a defence company's cybersecurity capabilities. This will affect whether those companies will be awarded future Pentagon procurement programmes.

The new Cybersecurity Maturity Model Certification (CMMC) is the Pentagon's effort to help curb an estimated annual loss of USD600 billion "or about one percent of the global gross domestic product" to cyber theft, said Under Secretary of Defense for Acquisition and Sustainment Ellen Lord.

Cyber-warfare operations against DoD and the US defence industrial base "offer adversaries low-cost and deniable opportunities to seriously damage or disrupt critical infrastructure and capability", Lord told reporters at the Pentagon on 31 January.

Want to read more? For analysis on this article and access to Jane's unrivalled data and insight, learn more about our subscription options at

(142 of 990 words)