Defining CMMC & NIST SP 800-171 Control Maturity

Posted by ComplianceForge on Jan 26th 2022

This episode of “Coffee Thoughts With Tom” ponders the question “CMMC was never a “real maturity model” so what does a NIST 800-171 Capability Maturity Model (CMMC) look like?” and builds off a pre … read more

NIST SP 800-171 - Expanding Scope To Certain Insurance Providers

Posted by ComplianceForge on Apr 1st 2021

NIST SP 800-171 is now applicable to certain insurance providers.Under the Department of Homeland Security (DHS) Federal Emergency Management Agency (FEMA) enters into arrangements with private s … read more

​What is the single greatest threat that your organization faces?

Posted by Tom Cornelius | Ryan Bonner on Mar 16th 2021

What is the single greatest threat that your organization faces? SolarWinds-style attacks? APTs? The answer is not what many initially think and the reason is primarily based on the sensitive natur … read more

NIST 800-171 Basic Assessment Reporting To SPRS

Posted by ComplianceForge on Nov 12th 2020

For those organizations in scope for NIST 800-171, the self-imposed November 30, 2020 deadline is fast approaching for many subcontractors to submit the results of their “basic assessment” to Suppli … read more