CMMC Industry Insights
GET THE LATEST NEWS & ARTICLES
Navigating the Data Alphabet Soup
Understanding Public Information, FCI, CUI, CDI, and CTI Hello there! If you're involved in government contracting or work with the Department of Defense (DoD), you've likely encountered a slew of acronyms—FCI, CUI, CDI, CTI—each representing[...]
What CUI Data do I have?
How do I know what CUI Data I have to determine the CMMC level to attain? This question has haunted most if not all Defense Contractors, big and small. Make no mistake, understanding your responsibilities[...]
CUI Data – Understand, Identify and Protect
CUI Data - Understand, Identify and Protect For small and medium-sized businesses (SMBs) navigating the intricacies of Cybersecurity Maturity Model Certification (CMMC), understanding Controlled Unclassified Information (CUI) data and categories is an essential first step.[...]
Overview of CMMC Mandate
Overview of CMMC Mandate Cybersecurity Maturity Model Certification (CMMC) The CMMC is is a comprehensive cybersecurity standard, based on the NIST 800-171 framework, that defense contractors must meet to ensure they protect sensitive data[...]
Glossary of CMMC Acronyms
CMMC Acronyms Here are some of the most common acronyms related to the Cybersecurity Maturity Model Certification (CMMC) mandate: CMMC (Cybersecurity Maturity Model Certification) A framework developed by the Department of Defense (DoD) to assess[...]
Securing the Defense Industry Under Threat
A. Current Threat Landscape to the Defense Industry The defense industry, particularly the U.S. Department of Defense (DoD), is a prime target for cyber-attacks due to the sensitive nature of the information it handles.[...]
Navigating Cyber Compliance for Business
Introduction In today's technology-driven world, businesses face increasing challenges in staying compliant with cyber regulations. Failing to prioritize cyber compliance can result in significant financial losses, reputational damage, and the loss of customer trust. On[...]
Why was NIST 800 171 Framework Chosen?
The NIST 800-171 framework is a set of guidelines developed by the National Institute of Standards and Technology (NIST) to ensure contractors and suppliers of the Department of Defense (DoD) have the appropriate security measures[...]
Cuba Ransomware Targeting U.S. Organizations
The Cuba ransomware gang has been observed targeting critical infrastructure organizations in the United States and IT firms in Latin America, using a combination of old and new tools. The latest campaign by Cuba ransomware[...]
How NIST 800-171 Can Enforce Zero-Trust
Zero-Trust Policy Zero-trust policy is a security model that assumes that no user or device can be trusted by default. This means that access to resources is not granted based on location or network affiliation[...]