CMMC has become a cybersecurity framework for the defense industrial base with CMMC third-party assessor organizations (C3PAOs) guiding organizations through this complex compliance landscape. We recently spoke with Tony Buenger, Director of Governance, Risk and Compliance at SecureStrux, a C3PAO …
The recent Securities and Exchange Commission (SEC) lawsuit against SolarWinds is a landmark in regulatory enforcement, signaling a new level of accountability for federal contractors. Cybersecurity standards have long been mandated, particularly for the defense industrial base (DIB), and now …
Formulating a blueprint on what to do when your organization experiences some sort of security breach is important. Testing that plan to make sure all responsible parties know what to do is also imperative. That’s where an incident response tabletop …
As your company works to improve its security posture and meet the requirements of NIST 800-171 and CMMC, the mission-critical clouds from Microsoft can provide the foundation you need to move forward. Recently Richard Wakeman, the chief architect for Cybersecurity …
Accelerate Your Path to CMMC compliance with Microsoft Cloud Offerings Read More »
Many CIOs have lived through technology evolutions in their businesses over the last 20 years, including the advent of cloud computing, mobile computing, remote work, and more. How do you make sure to continue to keep pace with the changing …
Now is the time to begin navigating your path to CMMC compliance—and completing an assessment is an important start. Focus on the requirements, which have always been DFARS clause 252.204-7012 that requires the implementation of the 110 controls of NIST …
Assessment: The First Step in Your CMMC Compliance Journey Read More »
In the race to achieve compliance with regulations like Cybersecurity Maturity Model Certification (CMMC) 2.0, leaders have turned to the cloud. There are mounting concerns about the security of cloud computing, leaving a balancing act with cloud benefits and digitalization …
Cloud Computing and Emerging Technologies: a Q&A with Arcfield CIO Bob Schwendinger Read More »
For contractors in the Defense Industrial Base (DIB) waiting to implement the necessary controls to comply with the Cybersecurity Maturity Model Certification (CMMC) program, it’s time to act. The Department of Defense (DOD) submitted the proposed rule to the Office …
Preparing for CMMC 2.0: NSA’s Bailey Bickley Talks Strategy, Technology at CMMC CON 2023 Read More »
Cybersecurity guidelines constantly evolve, creating a shifting landscape that federal contractors working with the Defense Industrial Base (DIB) must adhere to. The latest change came in May when the National Institute of Standards and Technology (NIST) updated guidance for protecting …
Dr. Ron Ross to Explain NIST 800-171’s History and Future Read More »
When Cybersecurity Maturity Model Certification (CMMC) 2.0 is officially launched, the audits will begin soon thereafter. The Defense Industrial Base (DIB) needs to know how to prepare, not just for compliance but also for attesting to that compliance. For an …
So You are Facing an Audit — Learn How to Prepare at CMMC CON 2023 Read More »
