All posts tagged: CMMC

What the New NIST SP 800-172 Means for You

What the New NIST SP 800-172 Means for You

The National Institutes of Science and Technology (NIST) has published a supplement to Special Publication (SP) 800-171 outlining requirements for a non-federal organization to develop a cyber program that is resilient against state-sponsored hackers. NIST SP 800-172, “Enhanced Security Requirements for Protecting Controlled Unclassified Information,” offers additional recommendations for defending controlled unclassified information (CUI) against advanced persistent […]

Read more

Microsoft Releases New Information for Defense Industry

Microsoft Releases New Information for Defense Industry

Microsoft published a slew of informational blogs today, and we’ve aggregated them below. Check out all the great work they’re doing and information they’re sharing for the defense industry. Accelerating Department of Defense mission workloads with Azure | Azure Blog and Updates | Microsoft Azure – By Eric Brown – As the Azure engineering team continues […]

Read more

Knowledge is Power: Arming Yourself Against CMMC-Related Fraud

Knowledge is Power: Arming Yourself Against CMMC-Related Fraud

As the Cybersecurity Maturity Model Certification (CMMC) has come online and continued to evolve, many more defense contractors have been seeking help in understanding new requirements and ensuring they gain the necessary level of compliance to bid on DoD contracts in the future. These companies are facing increasing pressure from the U.S. government to prove they are […]

Read more

Summary of Jan. 26 CMMC Town Hall

CMMC Town Hall

The OUSD (A&S) team and CMMC Accreditation Body hosted a virtual town hall meeting Jan. 26 to review CMMC and DFARS requirements and provide updates. Below, the Ardalyst team has provided a summary of the updated information released. 1. The DoD is initiating its CMMC pilot program for FY21. 2. The notional timeline the DoD […]

Read more

CMMC Accreditation Board Certifies Ardalyst as Registered Provider Organization

Ardalyst - CMMC RPO

Ardalyst announced today it has earned Cybersecurity Maturity Model Certification (CMMC) Registered Provider Organization (RPO) certification. This new achievement fortifies the company’s position as the leader in CMMC compliance solutions and services meant to eliminate theft of intellectual property and sensitive information across the Defense Industrial Base (DIB) and Department of Defense (DoD) supply chain.  “The RPO […]

Read more

Standing on the Shoulders of Giants: Working with Microsoft to Bring CMMC/NIST 800-171 Compliance to the Defense Industrial Base

Our Partners

As Microsoft Security Gold Partners, we are proud to see the tools Microsoft continues to accelerate compliance for defense contractors to tackle the Cybersecurity Maturity Model Certification (CMMC) and underlying NIST 800-171 requirements. Microsoft invests more than $1B per year in security alone, and they are dedicated to helping the Defense Industrial Base (DIB) become more secure […]

Read more

What the Latest DFARS Rule Changes Mean for You

CMMC

This week the DoD released the interim final rule for the Cybersecurity Maturity Model Certification (CMMC) and added details that may have immediate effects. It is outlined in an 89-page notice in the federal register published yesterday (Sept 29) entitled “Defense Federal Acquisition Regulation Supplement: Assessing Contractor Implementation of Cybersecurity Requirements (DFARS Case 2019-D041).” What […]

Read more

Breaking Down CUI

Every couple of weeks, I am finding myself back in the same conversation when advising clients and potential clients about the impacts of the DoD’s Cybersecurity Maturity Model Certification (CMMC). They inevitably ask: What is CUI? Controlled Unclassified Information CUI is government created or owned information that requires safeguarding or dissemination controls consistent with applicable […]

Read more

CMMC Pushing Forward

CMMC Pushing Forward

Several developments in the last couple of weeks have stood out as harbingers of the future – a future that involves the Defense Department’s Cybersecurity Maturity Model Certification (CMMC). For months, representatives from the CMMC Accreditation Body (CMMC-AB) and the CISO for OSD(A&S) Katie Arrington talked about the Summer of 2020 being marked by forward […]

Read more

C3PAO Registration Offers Industry the Option to Assist in CMMC Implementation

The CMMC Accreditation Body has opened new pages on their website to give information about registering as a C3PAO (Certified Third-Party Assessor Organization) and as an Assessor. They also have information about becoming a ‘registered practitioner’ or a ‘registered provider organization’ (these can be team members but not lead audits).  The first group of DoD cybersecurity […]

Read more