Blog

This episode of “Coffee Thoughts With Tom” ponders the question “CMMC was never a “real maturity model” so what does a NIST 800-171 Capability Maturity Model (CMMC) look like?” and builds off a pre … read more

NIST SP 800-171 is now applicable to certain insurance providers.Under the Department of Homeland Security (DHS) Federal Emergency Management Agency (FEMA) enters into arrangements with private s … read more

What is the single greatest threat that your organization faces? SolarWinds-style attacks? APTs? The answer is not what many initially think and the reason is primarily based on the sensitive natur … read more

For those organizations in scope for NIST 800-171, the self-imposed November 30, 2020 deadline is fast approaching for many subcontractors to submit the results of their “basic assessment” to Suppli … read more

Need procedures for CMMC? ComplianceForge released the NIST SP 800-53 R5 version of the Cybersecurity Standardized Operating Procedures (CSOP) template. Low, moderate, high and privacy baseline-map … read more