Bob Metzger to Speak on CMMC 2.0 Rulemaking at 2023 Annual CMMC Ecosystem Summit

Shareholder Robert Metzger, who heads RJO’s D.C. office, will participate in a featured panel at the Washington Technology Second Annual Cybersecurity Maturity Model Certification (CMMC) Ecosystem Summit on November 8 in McLean, Virginia. As a co-author of the MITRE “Deliver Uncompromised” Report, Bob is widely identified as a cyber thought leader whose work has contributed materially to the CMMC initiative.   

Bob will join Core4ce CEO Jack Wilmer for “The New Rule: What We Know and What’s Next.” 

Defense contractors and security solution providers have been waiting eagerly for the publication of the CMMC 2.0 rule, which will include all-new features in Title 32 of the Code of Federal Regulations. Once effective, the new rule will impose CMMC requirements upon tens of thousands of defense contractors of all sizes. A key feature will be required third-party assessments that will supersede present self-attestation requirements. 

During their discussion, Bob and Jack will discuss key issues expected in the new rule and how they will affect organizations seeking certification, as well as assessors and advisory and service providers. They will also discuss the current state of the imminent rule’s publication and how companies should assess the rule, once published, for submission of comments. 

The CMMC 2.0 rule, currently under final review by the Office of Management and Budget’s Office of Information and Regulatory Affairs, could be published for comment within days of the summit. The rule’s publication will generate huge interest, so a great challenge will be organizing constructive comments that respect the central purpose of CMMC 2.0 to improve the protection of Controlled Unclassified Information in the defense industrial base.