By: Chor-Ching Fan The compliance community is no stranger to speculation, especially as the Cybersecurity Maturity Model Certification (CMMC) program evolves. The CMMC Cyber AB, the official accreditation body [...]
By Chor-Ching Fan The Federal Risk and Authorization Management Program (FedRAMP) has responded to the unprecedented pace of expanding cyber attacks against systems used by federal government agencies [...]
By Chor-Ching Fan As a DoD contractor or subcontractor, achieving compliance with the Cybersecurity Maturity Model Certification (CMMC) 2.0 is essential for securing and maintaining contracts with the Department [...]
By Chor-Ching Fan Working with our customers and with colleagues over the years, the truth cannot be more clear than it is today. The term DevSecOps does not do [...]
By Chor-Ching Fan & Dave Trout Proposed Changes to NIST SP 800-171 Revision 3 Enhance Cybersecurity Measures NIST SP 800-171 is a publication [...]
FedRAMP Authorization Act Codified Big news—the FedRAMP Authorization Act has been passed! What exactly does this mean? The FedRAMP Authorization Act is part of [...]
By Chor-Ching Fan & David Trout Contractors awaiting an update from the DoD rulemaking process to firm up CMMC requirements recieved some insight [...]
By Chor-Ching Fan & David Trout Businesses can relieve many security and compliance burdens by using cloud services provided by Amazon AWS or [...]
By Chor-Ching Fan When facing a tight compliance deadline, you might not want to think about anything but satisfying the security controls that [...]
By Chor-Ching Fan & David Trout In a letter dated November 1, 2021 from Patricia L. Toppings, OSD Federal Register Liason Officer, the [...]