January 31, 2020

WASHINGTON – Today, ITI issued the following statement in response to the Department of Defense’s Cybersecurity Maturity Model Certification (CMMC) Framework Version 1.0:

“As the producers and operators of the world’s most sophisticated and widespread information technologies, the tech industry has first-hand knowledge of the challenging and evolving nature of the most persistent cyber threats,” said Gordon Bitko, ITI’s Senior Vice President of Policy, Public Sector. “That’s why we strongly support efforts to increase industrial base cyber security and the federal government’s efforts to improve data protection. Given the evolving nature of these threats, it’s essential that the federal government has the tools it needs to properly protect sensitive information and systems.

“Our industry understands this is a complex and ever-changing task. To that end, we look forward to reviewing this latest iteration of CMMC, and to working with DoD to incorporate information technology industry input and implement a structurally sound and holistic approach to improving U.S. industrial base cyber and supply chain security.”