CMMC on PAUSE
CMMC Phase II suspended
Breaking defense-industry update: The Department of War has immediately suspended CMMC Phase II requirements and all related implementation milestones previously expected to begin November 10, 2026.
Phase I self-assessments remain in effect, and contractors must still protect covered defense information under DFARS 252.204-7012. During a 60-day review, the Department will continue enforcing NIST SP 800-171 Rev. 2 through self-assessments and select government-led assessments, while its new CMMC Reform Task Force evaluates more scalable cybersecurity measures and ways to reduce compliance burdens—especially for small, medium, and non-traditional defense suppliers.
Chasm Opportunities will stay tuned and keep you posted.



