Risk assessments are an integral part of CMMC compliance and information security. Here’s what you need to know to be successful.
In the DIB world, not all CMMC assessments are created equally — especially when safeguarding our CUI Assets. Understanding the difference between Gap and Readiness Assessments isn’t just essential but can also be crucial. News Flash—Gap Assessments Are Not the Only Option Many believe that a Gap Assessment is the go-to for every situation. But […]
With the DoD’s new memo tightening FedRAMP requirements for cloud services, it may be time to develop a new approach.
In January 2024, NIST released critical updates to NIST 800-171 revision 3. Here’s everything you need to know to achieve compliance.
In 2023, the DIBCAC revealed the 10 most frequently failed NIST 800-171 requirements. Here are the common mistakes to avoid.
Disclaimer: NIST 800-171 Revision 3 is in DRAFT form, and public comments will be gathered before the publication is made final. 1. Resource Allocation = Time & Money Even though the total count of security requirements in the recently released draft of NIST 800-171 Rev. 3 remained steady with Rev. 2, the requirements were expanded […]
Thinking of joining the SP6 team? Here are four reasons why SP6 is a great place to work. 1. We’re Committed to Our Employees Competitive salaries, benefits, and development opportunities At SP6, you’re more than just a number. We’re invested in the wellbeing of our employees, which is why we offer competitive salaries, benefits, and […]
We’ve said it before: The Department of Defense Cybersecurity Maturity Model Certification (CMMC) Program is extremely complex. Contractors working within the Department of Defense supply chain must create detailed processes to show they can satisfy the DoD’s tightened data security requirements. As a first step, contractors should focus on successfully auditing their practices and meeting […]
Back in September, we wrote a blog about the Cybersecurity Maturity Model Certification (CMMC) program. In it, we explained how the Department of Defense introduced CMMC in 2019 to strengthen cybersecurity standards for Department of Defense (DoD) contractors. CMMC builds a set of cybersecurity requirements into acquisition programs. It’s designed to help provide the DoD with confirmation that firms within the Defense Industrial Base (DIB) are meeting those requirements. Why a Change from CMMC 1.0 to 2.0? […]
If you work in the cybersecurity sector, you know that the U.S. Department of Defense (DoD) is rolling out a Cybersecurity Maturity Model Certification program, or CMMC, to create stronger cybersecurity standards for contractors working in the DoD supply chain. Over 300,000 firms either currently do business within the Defense Industrial Base (DIB) or intend […]
- 1
- 2
