Set-Aside Alert logo   
    
Federal Market Intelligence
for Small Business

Front Page Headlines | Calendar of Events | Contract Awards | Newly-Certified Firms | DoD Small Business Awards | Teaming | Procurement Watch | Past Issues |
Nov 19 2021    Next issue: Dec 3 2021

CMMC gets a revamp

      On Nov. 4, following an internal assessment, the Defense Dept. announced “CMMC 2.0,” a revamped version of Cybersecurity Maturity Model Certification requirements intended to be less onerous for industry.

      There will be three compliance levels, down from five. Also, self-assessments will replace third-party audits for the low levels. And some vendors will be allowed time to comply post-award.

      Level 1 requires 10 cybersecurity practices, and includes annual self-assessments. Level 2 requires 110 practices outlined in NIST SP 800-171. And Level 3 include 110 or more practices aligned with NIST SP 800-171.

More information:
OUSD CMMC website: https://www.acq.osd.mil/cmmc/
National Defense magazine story: https://bit.ly/3FfxpyI

     

Inside this edition:

Biden’s $1.2T infrastructure bill approved with bipartisan votes

Vaccinations due by Jan 18

SBA proposes new standards for determining size of business

Final rule on sole sourcing

DBE awards to get boost

Buy Indian rule

CMMC gets a revamp

Column: In-Person Events are Back -- What’s Your Plan?

Washington Insider:

  • Buy American makes no sense for services: PSC
  • FAR limits manufacturing set-aside awards
  • Details on HUBZ changes in House 2022 NDAA

Coronavirus Update


Copyright © 2021 Business Research Services Inc. All rights reserved.

Set-Aside Alert is published by
Business Research Services, Inc.
PO Box 42674
Washington DC 20015
1-202-285-0931
Fax: 877-516-0818
brspubs@sba8a.com
www.sba8a.com
hits counter