CMMC Needs to Adapt to Evolving Cyber Threats
Katie Arrington, Performing the Duties of the DOD CIO
According to officials, the Defense Department’s Cybersecurity Maturity Model Certification (CMMC) program is a national security imperative to protect intellectual property and maintain an American competitive advantage in defense technology.
At AFCEA TechNet 2025 in Baltimore, Katie Arrington, performing the duties of the DOD CIO, says CMMC needs to adapt dynamically to evolving cyber threats. With evolving tech like AI and quantum, acquisition rules need to adjust to evolving technologies while maintaining security standards. Arrington says that the Defense Department needs to continue to streamline cyber requirements through required standards, guidance and executive orders.
She also discusses the need for a cultural shift towards continuous cybersecurity, the new Software Fast Track Initiative and baking cybersecurity into all DOD functions.
-
Katie Arrington Performing the Duties of the DOD CIO
-
New DOW Cyber Construct Aims for ‘Machine-Speed’ Defense
CSRMC embeds automation, telemetry and secure‑by‑design principles to outpace modern adversaries and unify risk posture.
4m read -
OMB Memo Rescinds Mandatory Software Security Vetting
New OMB directive rescinds rules mandating software bill of materials, making SBOMs an option, not a requirement.
4m read -
A New Era of Open-Source Geospatial Collaboration
Former NGA official Will Mortenson shares his journey from 27 years of government service to leading a global mapping revolution at the Overture Maps Foundation.
7m watch -
Turning Federal Backup Data Into an AI-Ready Asset
Cohesity’s Marlin McFate outlines how agencies are modernizing data management to improve visibility, security and accelerate AI adoption.
9m watch Partner Content
