Does my IT Managed Service Provider need to comply with CMMC?

Most small business Department of Defense (DoD) contractors do not have the resources to hire a full-time IT staff, which is why we typically look

May 11, 2022

The importance of network time synchronization in CMMC

A month or so ago all of my multifactor authentication tokens for my administrator access to our Totem servers suddenly stopped working. All of them.

April 20, 2022

How to Mark Controlled Unclassified Information (CUI)

NIST 800-171 and Cybersecurity Maturity Model Certification require Department of Defense (DoD) contractors to “Mark media with necessary CUI markings and distribution limitations”. A basic

March 30, 2022

Is remote work allowed for CMMC?

For the last two years, many Defense Industrial Base (DIB) members have grown accustomed to working remotely. However, with the rapidly approaching Cybersecurity Maturity Model

March 25, 2022

CMMC compliance for manufacturers: our recommendations

Over the past five years, we’ve helped over a hundred small business Defense Industrial Base (DIB) manufacturers meet their obligations to secure Federal Contract Information

March 3, 2022

Know Your Assets: The first step in building a cybersecurity program

With the recently announced Cybersecurity Maturity Model Certification (CMMC) version 2.0, many of us within the Defense Industrial Base (DIB) are beginning to turn our

February 17, 2022

A group of soldiers looking at a digital map in a dark room.

Cybersecurity Threat Modeling for Small Business

The ever-increasing number of breaches and hacks of small and medium-sized businesses (SMBs) make cybersecurity a top concern in today’s IT world. As organizations evolve

February 9, 2022

Continuous Monitoring of a CMMC Cybersecurity Program

Department of Defense Industrial Base (DIB) supply chain members must implement cybersecurity programs to protect the Federal Contract Information (FCI) and Controlled Unclassified Information (CUI)

January 21, 2022

The importance of cybersecurity user training in NIST 800-171

We’ve made the assertion in our Totem Top 10 that, after you have gathered a complete inventory of all your IT system assets and identified

January 13, 2022

Category: Cybersecurity Policy and Compliance