When a Quick Fix Just Isn't Possible Security standards like NIST 800-171 and the Cybersecurity Maturity Model Certification (CMMC) provide common
DoD CUI Identification Guide for DFARS 7012 / CMMC L3 Compliance
The Challenge of DoD CUI Identification Members of the US Department of Defense (DoD) Industrial Base (DIB)--the prime- and sub-contractors,
The CMMC vs other Cybersecurity Frameworks
The Cybersecurity Maturity Model Certification (CMMC) was designed to improve the security posture of the Defense Industrial Base. In developing the
CMMC Preparation Methodology executed by Totem Technologies
Totem Technologies' Small Business CMMC Preparation Methodology This post describes Totem Technologies’ (Totem.Tech) three-phased approach and
“What the heck?” Series Part 1: Processes Acting on Behalf of Authorized Users
What the heck are processes acting on behalf of authorized users? Excellent question, especially since NIST SP 800-171 and CMMC discussion,
How to generate and report your DoD Self Assessment score
Overview of the DoD Self-Assessment Requirement In a proposal published in the Federal Register, the DoD has outlined a new setof rules it wants
New DoD CUI Registry
CUI in a Nutshell Not having a thorough understanding of Controlled Unclassified Information (CUI) has made it difficult for Contactors to put the
New DFARS Interim Rule for DoD Cybersecurity
Introduction to and Explanation of the Proposed DFARS Interim Rules In a proposal published in the Federal Register, the DoD has outlined three new
FAR Bans Chinese Telecom
Introduction to the FAR and DFARS Rules The Federal Acquisition Regulation (FAR) provides a set of guidelines for how the US Federal Government