UPDATE: we've updated this post to include the latest on the DoD Self Assessment and SPRS website reporting process. Overview of the DoD
Cybersecurity Risk Assessment Methodologies for the Small Business
Cybersecurity Risk Assessment Within the Defense Industrial Base Risk management is a part of business. Although the level of risk companies face
Why is separation of duties required by NIST 800-171 and CMMC?
Background on the CMMC requirement to separate the duties of individuals Members of the DoD supply chain – the Defense Industrial Base (DIB) -- that
Understanding Multi-Factor Authentication
Understanding Multi-Factor Authentication MFA, or Multi-factor authentication, is a term we hear more and more these days. As cybersecurity moves
Totem Tech presented at KNCSS CMMC webinar
Our Cybersecurity Lead Adam Austin here at totem.tech had the privilege of presenting his top lessons learned for DoD contractor CMMC compliance at
How to become a CMMC C3PAO
The Cybersecurity Maturity Model Certification Accreditation Body (CMMC-AB) recently released news that two organizations that
Password Policy
Password Policy Requirements for CMMC Our clients often ask us what the password policy should be for their covered contractor information systems
The NIST Cybersecurity Framework
Securing Critical Infrastructure In 2011, hackers infiltrated US water treatment systems, resulting in physical infrastructure damage and thousands of
POAM Template Walkthrough
Streamline your POAM with Standardized Templates The Totem cybersecurity blog recently introduced Plans of Action and Milestones (POAMs), which