Those working in the US DoD Industrial Base (DIB) who also handle Controlled Unclassified Information (CUI) are required, via DFARS clause 252.204-7012, to implement the
For Department of Defense (DoD) contractors and subcontractors pursuing compliance with the Cybersecurity Maturity Model Certification (CMMC), few controls have been as challenging (and costly)
NIST SP 800-171 Control 3.13.1 / CMMC Practice SC.1.175 requires us to “Monitor, control, and protect organizational communications (i.e., information transmitted or received by organizational
What the heck are processes acting on behalf of authorized users? Excellent question, especially since NIST SP 800-171 and CMMC discussion, guidance, examples, and “clarification”
How to proceed as a DoD Contractor if we must satisfy NIST 800-171 cybersecurity requirements? If you’ve determined that your organization is subject to the
At the Fall 2024 NAPEX conference in Washington DC, a member of the Defense Logistics Agency (DLA) Joint Certification Program Office (JCPO) gave a presentation
Derived from recommendations by leading security organizations, the Totem Top 10™ is our take on the 10 most important cybersecurity safeguards you should put in
Government contractors that handle –store, process, or transmit– Controlled Unclassified Information (CUI) must implement the National Institutes of Standards and Technology (NIST) 800-171 standard to
As we’ve stated previously, all federal government contractors, even subcontractors, suppliers, and vendors, handle Federal Contract Information (FCI) and must implement the FAR 52.204-21 clause
Totem Technologies is the trusted CMMC tooling and training provider for defense contractors and their external service providers.
(385) 492-3405
Copyright © 2025 Totem Technologies, LLC
All rights reserved. Privacy Policy.
Skip to content