CMMC Level 2 – It can be less complex than you think
If you're a defense industrial base (DIB) contractor, you're already aware you need to meet compliance requirements in the new CMMC system, which goes live May 2023. Most government contractors are required to meet CMMC Level 2. The bad news is that it can be a...
Security Topic: Data Protection
Is there any organization with sensitive data that someone else isn’t trying to collect? We create processes, methodologies, and technical know-how. Even if we don’t have secret source-code or a cool product with intellectual property, every organization maintains...
Cybersecurity working with IT?
IT services are a crucial part of a business. Companies rely on managed service providers (MSPs) to ensure a host of operations such as email, file access, computer upgrades, software updates, anti-malware, anti-virus.... the list goes on. However, just because...
Risk Assessments – what makes them so important?
We work on all these security controls, and then sit back and marvel at how well we have secured our system. Should we think of our secure system as secure only at a single point in time, one that needs us to constantly attend to it and be prepared to make changes to...
Seemingly Boring, but Necessary – Continuous Monitoring
It is rather obvious what continuous monitoring is all about. It’s a service that constantly examines your network for malicious and unusual activity. It’s like having a security guard on duty 24/7/365 to keep your network safe. But really, why do we continuously...
Gone Phishing
100+ billion spam emails are sent each day, and 90% of successful breaches start with phishing. "What is phishing?" you might ask. It's the fraudulent practice of sending emails that seem to be from individuals you know or reputable companies to entice you to reveal...
What Cybersecurity Framework Are You Using?
Today’s headlines are full of cautionary tales of companies (and individuals for that matter) falling victim to cyber crime. Some incidents are very sophisticated; others not so much. Some companies are large; others are small. Some had prepared and defended, while...
Your Compliance Journey – 4 Stages
As we've been helping our clients navigate the ever-changing compliance world, especially in terms of CMMC, we find that many people think a compliance effort is a one-and-done initiative. They enter the compliance journey thinking they might have to buy a few pieces...
Cybersecurity Predictions for 2022
According to The Washington Post, just under $1 trillion was lost globally in 2020 in cyber-attacks[i]. While many attackers have a directive, most are just scanning the world looking for opportunities. It appears they are still very successful in their efforts. As...