Procurement coalition raises questions over DOD treatment of external service providers in CMMC proposed rule

The Coalition for Government Procurement is seeking clarity on how the Defense Department will allow external service providers to play a role in achieving compliance with the Pentagon’s Cybersecurity Maturity Model Certification program, in a filing on the proposed rule to implement the program.

“The definitions of ‘External Service Providers’ and ‘Cloud Service Providers’ must be clarified to facilitate continuing access by small and medium-sized businesses, especially, to external security services. Already, a very large percentage of SMBs rely upon...