FedRAMP Authorization Act Now Codified
FedRAMP Authorization Act Codified Big news—the FedRAMP Authorization Act has been passed! What exactly does this mean? The FedRAMP Authorization Act is part of [...]
FedRAMP Authorization Act Codified Big news—the FedRAMP Authorization Act has been passed! What exactly does this mean? The FedRAMP Authorization Act is part of [...]
By Chor-Ching Fan & David Trout Contractors awaiting an update from the DoD rulemaking process to firm up CMMC requirements recieved some insight [...]
By Chor-Ching Fan & David Trout Businesses can relieve many security and compliance burdens by using cloud services provided by Amazon AWS or [...]
By Chor-Ching Fan When facing a tight compliance deadline, you might not want to think about anything but satisfying the security controls that [...]
By David Trout & Chor-Ching Fan Today, businesses of all sizes face growing challenges from compliance requirements. Staying in compliance requires more skill, experience, and knowledge than ever before. [...]
By Chor-Ching Fan When the recently released CMMC Interim Rule (DFARS Case 2019-D041) takes effect on November 30, 2020, the Department of Defense (DoD) will require defense contractors to [...]
By Chor-Ching Fan With theft of Controlled Unclassified Information (CUI) on the rise, DoD announced the Cybersecurity Maturity Model Certification (CMMC) program on May 24, 2019. CMMC will require [...]
by David Trout When working in the federal IT space, next to proactive security, compliance is everything. Thousands of pages of requirements exist between the Federal Acquisition Regulation (FAR) [...]
By David Trout Controlled Unclassified Information (CUI) is what NIST 800-171 is all about. Once you figure out what it is, then you need to know where it is, [...]
By David Trout NIST 800-171 security controls are purposely designed to be broad, so that individual contractors can adapt them to their operations. While this non-specific approach supports a [...]