The recently announced Cybersecurity Maturity Model Certification (CMMC) is the standard companies will have to meet in order to do business with the Federal Government – as early as this summer. Depending on your proficiency level and depth of knowledge, this reality may be causing your team stress and anxiety. Don’t let it. With the […]
The recent rise in remote work has not stopped malicious actors, and if anything cybersecurity is even more critical than it was before as opportunistic attackers target insecure remote connections. The ability to assess and validate your network is increasingly vital. For smaller applications, that means penetration testing, as we’ve written recently. But as organizations […]
The COVID-19 pandemic has had a widespread impact on policies and practices across both government and industry. Small businesses and large agencies alike have had a few weeks now to experiment with their mass telework and operations plans, and are beginning to understanding how secure their connections are, what their basic cyber hygiene is and what they need to minimize further disruption to their missions. COVID-19 has not stopped malicious actors. In fact, it is typically at […]
So your business is teleworking now. Your employees are spending a lot of time in conference calls, virtual meetings and chats using teleconference applications and software. Maybe the team’s even using these applications for the ever-popular virtual office happy hour, which is gaining popularity every day. Now is good time to ask if these platforms […]
The Department of Defense has finalized and released version 1.0 of the Cybersecurity Maturity Model Certification (CMMC) framework, making official the requirement for all Defense Industrial Base (DIB) contractors to achieve certain levels of certification to continue bidding on defense contracts. Here are some initial thoughts from our analysts. Institutionalization of Security Processes CMMC v1.0 […]
It’s hard to measure risk without knowing the weaknesses in your system, people and processes. Understanding your vulnerabities and potential exposure from the adversary perspective is vital to successful defense of your system and navigating through an attack. To this end Adversary Emulation and Simultation are important tools to both knowing your systems and validating […]
Are you a government contractor? Have you heard some rumblings about something called CMMC and wondered what the government has in store for future compliance? You’re not alone. We here to help with a short FAQ about the Defense Department’s new plan to mature contractor cybersecurity standards. What does CMMC stand for? CMMC stands for […]