• Subscribe Now
  • Subscriber Login
  • My Account
Huntsville Business Journal
  • Link to Facebook
  • Link to X
  • Link to Mail
  • Link to Rss this site
  • News
  • Small Business
  • People
  • Real Estate
  • Government
  • Finance
  • Technology
  • Contact
  • EVENT Magazine
  • Best of Huntsville
  • Menu Menu
Potential Government cybersecurity standards to bring major changes for Huntsville businesses
Sarah Zupko

Potential Government cybersecurity standards to bring major changes for Huntsville businesses

January 8, 2024/in Community Development, cyber, Defense, Economy, Featured, Government, Lead, Military, News, Resource/by Sarah Zupko

On 26 December 2023 the federal government released updated proposed cybersecurity requirements for defense contractors and subcontractors who conduct business with the U.S. Department of Defense (DoD). 

This set of proposed regulations, known as CMMC (Cybersecurity Maturity Model Certification) was released as a 234-page document, which is published online in the Federal Register. 

The Huntsville Business Journal sat down with Scott Edwards, CEO of Summit 7, to discuss the proposal and how it would potentially affect Huntsville businesses working with the DoD. 

The type of data that a defense contractor manages will determine which of the three levels of CMMC compliance they will need to meet. Contractors in Level 1 will be required to meet 17 practices, and will be able to self assess for compliance. Contractors in Levels 2 and 3 will need to meet 110 and 134+ practices, respectively, and will require third-party assessment for compliance.

Scott Edwards explained how to determine which level of compliance Huntsville companies will need to meet. 

“You’re going to be assessed at the highest level of the data you handle across all of your contracts,” said Edwards. 

Any company that manages CUIs, Controlled Unclassified Information, will automatically reach Level 2, and thereby be required to obtain third-party assessment. 

The size of a particular government contracting firm does not determine its need for compliance. Whether a firm has 2 employees or 2,000, it will need to meet the level of CMMC integration that is designated by the level of security needed for the documents it handles. 

Jacob Horne, Chief Security Evangelist at Summit 7,  discussed estimated costs of CMMC assessment in a recent online post. Companies requiring the minimum level of CMMC compliance can expect to spend close to $6,000 on assessment alone, while contractors requiring Level 2 compliance may spend over $100,000 obtaining appropriate CMMC assessment. 

It should be noted that these particular figures do not include the implementation costs that will prepare DoD contractors to be assessed. Implementation expenses, which may include hiring costs and costs of additional hardware and software, are estimated to reach as high as six-figures for individual companies. 

In addition to significant economic outlays, there will also be intangible costs to workers. In order to meet regulations, there may be changes to the ways in which people work on a day-to-day basis. Multi-factor authorization for log-ins, bans on the use of personal devices for work-related material, and the implementation of virtual desktops are just a  few examples of changes that workers may need to adjust to as their company implements CMMC regulations.

Building up approved IT infrastructure is estimated to take anywhere from 9 to 24 months, per individual contracting company.  

The ability of local defense contractors to meet CMMC regulations will impact residents of Huntsville and Madison, regardless of whether they are a part of the defense industrial base or not. 

“Obviously, Huntsville and North Alabama, as a whole, are very dependent on government contracting. That is what Huntsville does. The whole government contracting community really, really has to pay attention to this, because it is going to impact them. It doesn’t impact them any differently than it impacts other communities, it is just that Huntsville has such concentration [of defense contracting] that it impacts our economy more than it impacts other communities,” explained Edwards.

Although the CMMC process can seem overwhelming at first, there are resources available to prepare for the potential changes. 

Summit 7 is hosting a free webinar on CMMC compliance on 10 January 2024 at 10:30 am, Central Time. The webinar is designed to be educational, rather than promotional. Interested parties can register here. 

The CMMC proposed regulations can be found online through the Federal Register. 

Public comments may be made on this page until February 26, 2024. Edwards estimated that the proposed regulations will go into effect during the first quarter of 2025.

Related Stories:

  • Service beyond self: Huntsville veterans reflect o...

    Service beyond self: Huntsville veterans reflect o...

  • Goodwyn Mills Cawood acquires Matheny Goldmon with...

    Goodwyn Mills Cawood acquires Matheny Goldmon with...

  • A Conversation with Chuck Jones of The Mountain Sp...

    A Conversation with Chuck Jones of The Mountain Sp...

Tags: City of Huntsville, CMMC, Controlled Unclassified Information, CUI, Cybersecurity Maturity Model Certification, Department of Defense, DoD, Federal Register, National Government, Summit 7
Share this entry
  • Share on Facebook
  • Share on X
  • Share on WhatsApp
  • Share on Pinterest
  • Share on LinkedIn
  • Share on Tumblr
  • Share on Reddit
  • Share by Mail
https://huntsvillebusinessjournal.com/wp-content/uploads/2024/01/Potential-Government-cybersecurity-standards-to-bring-major-changes-for-Huntsville-businesses.jpg 316 833 Sarah Zupko https://huntsvillebusinessjournal.com/wp-content/uploads/2019/02/HBJ-Logo.png Sarah Zupko2024-01-08 06:30:502024-01-07 18:01:25Potential Government cybersecurity standards to bring major changes for Huntsville businesses
You might also like
Flourish Not Just Thriving, but Flourishing: Flourish Turns Four
Invariant Corporation Continues To Expand Adds Additional 23000 Square Feet of Space 1 Invariant Corporation Continues To Expand; Adds Additional 23,000 Square Feet of Space
American Association of Community Colleges selects Drake State President Dr. Patricia Sims to AACC Board American Association of Community Colleges selects Drake State President Dr. Patricia Sims to AACC Board
Untitled 2026 01 22T093602.929 Robins & Morton complete two more Redstone Gateway projects
Adtran ADTRAN 10G Fiber Access Platform Selected to Boost Colorado Springs ISP’s Broadband Network
Untitled 2026 02 12T130114.291 For second straight year, Drake State takes part in FICO Educational Analytics Challenge
Search Search

Categories

Support Local Journalism - Subscribe today

Menu

  • Features
  • Events
  • People
  • Small Business
  • Government
  • Finance
  • Technology

Subscribers

Subscriber Login

My Account

Become a Subscriber

Sign Up For Newsletter

 

Contact Us

Advertise
Submit Your News
Distribution

EVENT Publishing
Huntsville Business Journal
600 Boulevard South #104
Huntsville, AL 35802

(256) 533-8078

Publisher:
todd@huntsvillebusinessjournal.com

Send Us Your News:
editor@huntsvillebusinessjournal.com

Site by PlayBig Design - Managed by IG Webs
  • Link to Facebook
  • Link to X
  • Link to Mail
  • Link to Rss this site
  • Subscribe Now
  • Subscriber Login
  • My Account
Link to: People and pooches alike celebrate opening of Huntsville’s first dog bar Link to: People and pooches alike celebrate opening of Huntsville’s first dog bar People and pooches alike celebrate opening of Huntsville’s first dog barPeople and pooches alike celebrate opening of Huntsvilles first dog bar Link to: Construction Partners completes acquisition of Huntsville-based contractor company Link to: Construction Partners completes acquisition of Huntsville-based contractor company Construction Partners completes acquisition of Huntsville based contractor companyConstruction Partners completes acquisition of Huntsville-based contractor ...
Scroll to top Scroll to top Scroll to top