FEATURE ADVANCED MATERIALS & PROCESSES | MARCH 2024 39 7 treaters must establish robust cybersecurity practices and maintain them over time to stay compliant. Potential Impact on Business Operations. Not being certified to CMMC 2.0 could lead to disqualification from defense-related contracts. Heat treaters may face business disruptions and loss of opportunities if they fail to meet the cybersecurity requirements set by the DOD. WHERE AND HOW TO START As CMMC 2.0 is not yet fully released, it draws from the security requirements outlined in NIST SP 800-171 Rev. 2. Both NIST SP 800-171 and CMMC 2.0 present significant challenges, requiring a substantial effort. The timeline for achieving full compliance can range between 12 to 24 months, with the majority of businesses aiming for a Level 2 certification. Beginning in Q1 2025, DOD’s phased rollout will begin by requiring CMMC Level 1 and 2 self-assessments for all new contracts and solicitations. Six months later, CMMC level 2 certification assessments will be required in all new contracts and solicitations. Do not wait to be NIST SP 800-171 compliant before the full CMMC rollout, to enhance your security standings in your nonfederal systems. DON’T RISK FUTURE BUSINESS Enforcing these DOD regulations demands substantial effort and investment from heat treaters and other contractors. However, the business advantages of compliance are also substantial. Adherence to these regulations can aid contractors in diminishing the risk of cybersecurity breaches, preserving their reputation, and maintaining their eligibility to compete for DOD contracts. Neglecting to implement these prerequisites can lead to the forfeiture of existing contracts and the inability to bid on new ones. Furthermore, businesses in compliance with these regulations may be regarded as more dependable and trustworthy partners by the DOD and their prime contractors. This is an enormous project that is both timeconsuming and expensive. Always seek the help of a qualified NIST SP 800-171 and CMMC consultant or Registered Practitioner. It is not recommended to do this on one’s own. ~HTPro For more information: Joe Coleman, cybersecurity officer, Bluestreak Consulting, joe.coleman@go-throughput.com, www.go-bluestreak.com. Additional Technical Books Added to ASM Digital Library! ASM International continues to add content to the Technical Books site in the ASM Digital Library. The site now provides convenient access to over 80 book titles on an expansive range of topics related to materials selection, processing, properties, performance, and characterization. ASM Technical Books offer practical, hands-on guidance and help in problem-solving, and subscribers gain access to a broad collection of titles. These valuable content resources are now available in a unified delivery platform offering advanced search, browse, filtering, linking, and content access. With additional legacy titles from the ASM collection and new titles being added throughout 2024 and beyond, subscribers receive enhanced value and benefits well into the future. ASM TECHNICAL BOOKSTM dl.asminternational.org/technical-books
RkJQdWJsaXNoZXIy MTYyMzk3NQ==