by Shawn Duffy | Nov 9, 2021 | CMMC, Assessments, Blog, CMMC 2.0, Department of Defense, DFARS, DOD, News, POA&M, SPRS, vulnerability
As you may have seen last week, the new CMMC 2.0 has been released, which reverts us back to the NIST 800-171 set of security controls and families. It also allows for both a Plan of Actions & Milestones (POA&M) and self-assessments. This is great news for...
by Dawn Shuler | Oct 7, 2021 | Blog, Cybersecurity, Events, News, Security Awareness Training
Help us at Duffy Compliance Services celebrate Cybersecurity Awareness Month, first started by the Cybersecurity and Infrastructure Security Agency (CISA) 18 years ago. The mission has been – and continues to be – to raise awareness of the importance of...
by Shawn Duffy | Aug 26, 2021 | Blog, CMMC, Compliance, Cybersecurity, IaaS, News, PaaS
Dedicated enclave solutions are popping up in the form of Platform as a Service (PaaS) and Infrastructure as a Service (IaaS). In both cases, someone else builds, manages, and monitors a cloud-based environment, in some cases, one that was designed to meet regulatory...
by Shawn Duffy | May 11, 2021 | CMMC, Compliance, Cybersecurity, News
In the coming weeks* we could see a new executive order from the Biden Administration that will likely address new regulatory requirements for software development standards. These changes in software standards could potentially change in the way the government...
by Dawn Shuler | Feb 8, 2021 | CMMC, Blog, Company Milestones, Cybersecurity, News
New Market, Maryland, February 8, 2021 – Duffy Compliance Services, a provider of cybersecurity consulting and compliance services is now approved as a candidate Certified 3rd Party Assessor Organization (C3PAO) by the CMMC Accreditation Body. The CMMC Accreditation...
by Shawn Duffy | Dec 3, 2020 | CMMC, Blog, Compliance, News
For all of 2020, there has been a frenzy over migrating from CUI to CMMC. As a matter of fact, Duffy Compliance Services has even been registered to become a C3PAO (Certified 3rd-Party Assessment Organization) for CMMC. The intention was that CMMC would be in place...