720-891-1663

ATTENTION GOVERNMENT CONTRACTORS!

For those of you who contract to the DoD or Department of Education – or are a vendor to those who are, this will apply to you sooner; for other executive branch agencies, it will take a little longer. The section of Title 32, the part of the Code of Federal Regulations that the DoD […]

Continue reading → [DISPLAY_ACURAX_ICONS]

DoD Just “Upped” The Cybersecurity Game for Defense Contractors

If you are a defense contractor – prime, sub or vendor to one of these and you were hoping that CMMC was going to go away, I don’t think that is going to happen – at least not on this president’s watch. Even if the party in power changes in January, I don’t much will […]

Continue reading → [DISPLAY_ACURAX_ICONS]

DoD Contractors: Will You Have to Replace Your MSP?

If you are a defense contractor, then over the next few years you will likely have to be compliant and maybe certified for CMMC, either at level one or level two. Level one has about 17 controls and 59 assessment objectives; level two has 110 controls and about 315 assessment objectives. Assessment objectives are the […]

Continue reading → [DISPLAY_ACURAX_ICONS]

NIST Releases Draft 800-171 Rev 3

NIST Special Publication 800-171 is the guide that all defense contractors must follow for protecting controlled unclassified information. It has been around since 2015 and has gone over several revisions. Revision 3 is the most recent and NIST has released the “initial public draft”. Expect a final draft this fall and a released version in […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Federal Civilian Agencies May Have to Comply with CMMC-Like Security Requirements

If you sell to the federal government – any agency – you need to pay attention to this. Until now only DoD contractors were going to have to comply with CMMC or NIST SP 800-171. The standard requires 100% compliance with 110 controls; some of them pretty straight forward like having each user having their […]

Continue reading → [DISPLAY_ACURAX_ICONS]