DFARS Cybersecurity Workshops

Totem Technologies offers two-day DFARS cybersecurity workshops for small- to mid-sized DoD contractors to gain cybersecurity risk management and compliance knowledge, and to develop the following components of a mature cybersecurity program: a System Security Plan (SSP), a Plan of Actions and Milestones (POAM), and an Incident Response Plan (IRP). The workshops will be led by experienced information security professionals.

Meet the Instructor:
Adam Austin

Adam Austin is a former educator and current small-business DoD contractor who regularly speaks in front of small-business audiences about planning and implementing affordable cybersecurity programs. His success in cybersecurity risk management began with securing Federal government IT systems to DoD and HIPAA standards, and then training the government associates utilizing such infrastructure. Currently, Adam focuses on helping DoD contractors and small-businesses alike become compliant with DFARS and NIST requirements. Adam is a Certified Information Security Manager and Information Systems Auditor (ISACA CISM/CISA), and has a Master’s degree in Information Assurance. His goal as an instructor is to educate, empower, and prepare organizations to succeed during their compliance progression!

Why should I attend this DFARS Cybersecurity workshop?

Our in-person instructors and cybersecurity engineers will help kick-off DoD Contractors cybersecurity compliance journey by focusing specifically on their current cybersecurity program’s weaknesses. Did you know that over half of the NIST 800-171 requirements can be met by adopting policy alone? We take a top-down approach, starting by developing common-sense policies that guide the implementation of specific processes, procedures, and technology to meet the requirements and work for your organization. We will explain and interpret the critical cybersecurity compliance regulation language that your organization will be assessed against. Totem Technologies’ representatives will collaborate with members of your small business to create a System Security Plan (SSP), Plan of Actions and Milestones (POAM), and an Incident Response Plan (IRP) that fits your organization and will help bolster your cybersecurity program while fulfilling your compliance specifications.

We understand that this is a huge endeavor for DoD contractors, so we also provide on-going phone and software support for 30 days so DoD contractors can complete their System Security Plan (SSP), Plan of Action and Milestones (POA&M), and Incident Response Plan (IRP)

What are DoD Contractors saying about our
Interactive DFARS Cybersecurity Workshop?

When and where can I attend Totem's Interactive
DFARS Cybersecurity workshops?

Syllabus for Totem's DFARS Cybersecurity Workshops

The purpose of the DFARS cybersecurity workshop is for SMBs to successfully complete their System Security Plan (SSP), Plan of Actions and Milestones (POA&M), and Incident Response Plan with the help of a cyber engineer in accordance to the DFARS 252.204-7012 regulations.  

Required Pre-work

Attendees will be required to do some pre-work to guarantee a successful workshop. Documents will be provided to help with this assignment. Here is a list of the required pre-work: 

  • Fill out the System Description document 
  • Compile and bring inventory of user accounts, hardware, and software components of IT system 
  • Fill out the SSP development questionnaire 
  • Fill out the separation of duties worksheet 
  • Provide Totem.Tech with the organizational name and alphanumeric alias (e.g. “Acme Corporation”; “ACME”) for entry into Totem software, as well as the email of the owner of the system for Totem account


What attendees need to bring:

  • The documentation listed above
  • A laptop or mobile workstation with WiFi accessibility


Schedule for DFARS Cybersecurity Workshop:

Day 1 (0800—1700 9 hrs):

  • Begin: 0800: Introduction to Totem.Tech (15 minutes)
  • Overview of DFARS cybersecurity requirements (1 hr)
  • Workshop focus: Prioritize implementation, addressing the “FAR 17” in the SSP (3 hrs)
  • Lunch: 1200 (1 hr) (lunch provided)
  • Workshop focus: Address unique organizational SSP (4 hrs)


Day 2 (0800—1700 9 hrs):

  • Begin: 0800: How to procure and manage an External Certificate Authority (ECA) certificate to enable Incident Reporting (1 hr)
  • Workshop focus: Scenario-based development of an Incident Response Plan (IRP) (3 hrs)
  • Lunch: 1200 (1 hr) (lunch provided)
  • Introduction to POA&M (0.5 hour)
  • Workshop focus: Address unique organizational SSP/POA&M (3.5 hrs)


30-day ongoing support included with the DFARS Cybersecurity Workshop:

  • Attendees get 30 days of Totem’s Cybersecurity Planning Tool software to complete SSP, POA&M and IRP.
  • Attendees can call in up to 30 days after workshop to get help from a cyber engineer for questions relating to their SSP, POA&M, and IRP.


Have questions or want to register for an upcoming DFARS Cybersecurity Workshop?