119th Congress · HOUSE JOINT RESOLUTIONBILL

H.J.Res. 40 — Providing for congressional disapproval under chapter 8 of title 5, United States Code, of the rule submitted by the Department of Defense relating to "Cybersecurity Maturity Model Certification (CMMC) Program".

“Providing for congressional disapproval under chapter 8 of title 5, United States Code, of the rule submitted by the Department of Defense relating to "Cybersecurity Maturity Model Certification (CMMC) Program".”

Armed forces and national security

Introduced Feb 12, 2025

Last action Feb 12, 2025

Pipeline · Bill → Law

Step 1

Introduced

Feb 12, 2025

Step 2

Referred

Feb 12, 2025

Armed Services

Step 3

Committee

Step 4

House floor

Step 5

Senate

Step 6

Resolve Changes

Step 7

Signed

SummaryCRS Summary

This joint resolution nullifies the Department of Defense (DOD) rule titled Cybersecurity Maturity Model Certification (CMMC) Program (89 Fed. Reg. 83092) and published on October 15, 2024. Among other elements, the rule establishes the Cybersecurity Maturity Model Certification Program. The program institutes policies regarding the protection of Federal Contract Information (FCI) and Controlled Unclassified Information (CUI) that is processed, stored, or transmitted on defense contractor and subcontractor information systems during defense contract performance. The rule also identifies entities to which the rule applies and describes DOD implementation of the program.

Provisions · 1 sectionsIntroduced in House

Timeline · 2 actions

Feb 12, 2025

Introduced in House

Feb 12, 2025

Referred to the House Committee on Armed Services.