CMMC requirements are appearing in defense contracts and moving down through supplier networks to thousands of companies new to this kind of compliance work. Many run on limited budgets with lean security teams. The picture comes from nearly 900 defense contractors, C3PAOs, federal suppliers, and cybersecurity professionals who attended the 2026 Secureframe National Cybersecurity Summit. Where CMMC adoption stands Adoption varies across the defense industrial base. A small share have completed third-party certification at Level … More →
The post Half the defense base still builds security around compliance appeared first on Help Net Security.

Building more resilient CNI: what industry pen testers told us
Pen testers suggest what organisations can do to make their job more difficult.


