What is CSF, and do you need it?

What is CSF, and do you need it?

Over here at Duffy Compliance, we are all things security. But that doesn’t necessarily mean that you know many of the terms (or alphabet soup) that we throw around. One term that has come up recently from some of our clients is “CSF,” formally known...
The interim rule for CMMC

The interim rule for CMMC

For all of 2020, there has been a frenzy over migrating from CUI to CMMC. As a matter of fact, Duffy Compliance Services has even been registered to become a C3PAO (Certified 3rd-Party Assessment Organization) for CMMC. The intention was that CMMC would be in place...
NIST publishes newest update

NIST publishes newest update

NIST just published their newest update to the security control baselines in the 800 series. If you weren’t aware, this is really key to the NIST family. The interesting thing is that they’ve merged a lot of these controls together from 800-53 and its...