720-891-1663

So You Think You Are Ready for Your CMMC Assessment

At some point in the “relatively near future”, if are a DoD contractor, subcontractor, vendor, managed service provider or a host of other folks, you will be staring a CMMC certification in the face. Here are some thoughts from a provisional assessor on what it will take to get the job done. Hopefully this is […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Is Your IT Provider a Security Dumpster Fire

Many small businesses and a lot of large ones use third party IT service providers called MSPs or Managed Service Providers. In almost all cases, these MSPs have the keys to your IT universe. They have access to your data. They also have access to all of your access rules. If they also help you […]

Continue reading → [DISPLAY_ACURAX_ICONS]

DoD CMMC Update

To say that DoD’s plans to enhance the cybersecurity practices of the defense industrial base have not gone exactly as planned would be polite. White House Executive Order 13556, creating controlled unclassified, was issued in 2010. 12 years later, DoD is still wrestling with the issue. DFARS 252.204-7012, which mandated NIST 800-171 compliance, became effective […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Security News for the Week Ending April 23, 2021

USTRANSCOM Starts CMMC Lite Now The DoD’s transportation command, the folks who are in charge of getting all the stuff that the military needs from where it is to where it needs to be, has announced that they are implementing a light version of CMMC NOW instead of waiting for the five years that it […]

Continue reading → [DISPLAY_ACURAX_ICONS]