The Accreditation Body (AB) in charge of the Department of Defense’s (DoD) Cybersecurity Maturity Model Certification (CMMC) program appointed Matthew Travis to serve as the body’s first CEO to oversee day-to-day operations and management.
Travis previously served as the Cybersecurity & Infrastructure Security Agency’s (CISA) first deputy director. Before his time at CISA, Travis co-founded the DC-based security startup, Obsidian Analysis, which was later acquired by Cadmus, a strategic and technical consultancy. Travis went on to serve as Cadmus’s vice president of homeland security.
“Joining and leading the CMMC-AB is a tremendous opportunity. I look forward to using my collective experiences of running a security company start-up as well as my time at CISA, where I focused on supply chain risk, to ensure we mitigate risks as they relate to both the DoD and the contractor community,” Travis said in a press release.
“There is no more important cyber mission right now than building a trusted, verified, and resilient cybersecurity ecosystem within the Defense Industrial Base,” he added. “When we look at where true cyber risk currently resides, the CMMC mission is a critical component of the safety and security of our nation and its citizens.”
Travis’s appointment is the result of a nationwide search by the CMMC-AB board of directors.
“We are extremely thrilled to have someone as respected and accomplished as Mr. Travis lead the Accreditation Body. His organizational development skills as well as in-depth understanding of security and the Federal government will enable us to continue to quickly ramp-up AB operations and execute against our mission in service of the nation’s defense,” said CMMC-AB Board Chair Karlton Johnson.