GovConJudicata Weekly Debrief (4/20–24)
This week's Weekly Debrief covers several interesting topics, including CISA incorporating aspects of the CMMC into new guidance, a CMMC-AB RFP for continuous monitoring, State's intel via open-source data, Space acquisition, and a JEDI update.
Cyber
NextGov – CISA’s Coming Supply Chain Guidance to Align with Pentagon’s Vendor Certification Program
"A Cybersecurity and Infrastructure Security Agency task force will release supply chain guidance that incorporates aspects of the Pentagon’s Cybersecurity Maturity Model Certification program, a CISA official said."
"The accreditation body overseeing the Defense Department’s Cybersecurity Maturity Model Certification program—the CMMC-AB—issued a request for proposal that provides insight into how the group plans to keep track of contractors outside of conducting physical audits."
State
FederalNewsNetwork – State Dept. intel ‘doing more outside of the SCIF’ with open-source data
"Before coronavirus pandemic, parts of the intelligence community were already preparing to deal with another major disruption to the way it does business: The rise of emerging technology."
Defense
FCW – Navy CIO: Future networks hinge on flexible acquisitions now
"The Navy wants to rebuild its legacy networks but needs to speed up its acquisitions first, according to Aaron Weis, the military service's CIO."
C4ISRNet – Upcoming report to Congress on space acquisition expected to be ‘groundbreaking’
"Senior Defense Department officials are reviewing a report on reforming space acquisitions, according to U.S. Space Force Vice Commander Lt. Gen. David Thompson, who added the report could be sent to Congress in the near future."
FederalTimes – Court decides Pentagon can reevaluate parts of JEDI procurement
"A federal judge will allow the Department of Defense to reconsider certain aspects of its enterprise cloud procurement despite opposition from Amazon, according to a court decision filed April 17."
. . .
