Version 0.4 of the draft Cybersecurity Maturity Model Certification (CMMC) has been released for industry review and comment. Katie Arrington, CISO OUSD A&S, will be the featured guest in this highly anticipated new webinar from the Cyber Collaboration Center, presenting an update on the most current information about DoD plans and processes relating to the CMMC and its mandatory 3rd party cybersecurity compliance certification process.

Ms. Arrington is the leader of the DoD’s Chief Information Security Office established by Kevin Fahey, Assistant Secretary of Defense for Acquisition & Sustainment. The CMMC program office is conducting “Listening Sessions” around the country, providing up-to-date information and seeking feedback from defense industry stakeholders. Once it is fully implemented, the CMMC program will require 100% of all DoD contractors to obtain 3rd party certifications of cybersecurity compliance in order to maintain eligibility to bid on new DoD contracts. Contracts that do not involve handling sensitive information will still require at least a CMMC Level 1 certification, to verify that basic cyber hygiene is being practiced by the contractor. For contracts that do involve handling of CUI / CDI, higher levels of CMMC compliance will be required and specified in sections L and M of new solicitations starting as soon as September 2020.

Don’t miss this chance to learn more about the DoD’s official plans and positions regarding this highly important and impactful program, and to submit questions and feedback that can help ensure clarity and efficiency in CMMC implementation.

For free registration, visit www.cybercollaborationcenter.org.

Franklin Turner

Katherine Arrington

Chief Information Security Officer
Office of the Under Secretary of Defense for Acquisition

Katherine “Katie” Arrington currently is the Chief Information Security Officer for the Office of the Under Secretary of Defense for Acquisition. In this position, she serves as the central hub and integrator within the Office of the Under Secretary of Defense for Acquisition and Sustainment, OUSD A&S, to align acquisition cyber strategy.

As the cyber lead and programmatic analytic advisor for strategic cyber programs, Ms. Arrington is responsible for conducting analysis within the major defense acquisition program portfolio and across the Department of Defense. This cross-functional analysis will ensure transparency within the acquisition strategy, interoperability between enterprise networks, and compliance strategies for cyber initiatives. She also meets with key Cyber personnel (across both DoD and Federal Agencies) as well as legislators to ensure that changes made in the National Defense Authorization Act (NDAA) are supportive in reaching the goals of decreased spending and increased compliance with current and future standards. The final focal point will be on protecting the Department’s intellectual property/data and securing our weapon systems and critical infrastructure.

Before assuming her position in OUSD A&S, Ms. Arrington had an extensive career as a legislator and senior cyber executive. Ms. Arrington was a candidate for South Carolina US House of Representative 2018 and a South Carolina State Representative for 2 terms. She has substantial experience and capabilities in cyber strategy, policy, enablement and implementation across a wide range of domains, including DoD, Federal, Healthcare and State. She acquired her experience in cyber over the past 15 years with Booz Allen Hamilton, Centuria Corporation and Dispersive Networks. This has given her the unique experience of working at a large business, small business and non-traditional contractor for the government. She attended Canisius College in Buffalo, NY.