by Shawn Duffy | Nov 17, 2023 | Cybersecurity, Blog, Data Protection, Risk, Security Awareness Training, vulnerability
US Officials are now preparing for Iranian cyberattacks. According to FBI Director Christopher Wray, “The cyber targeting of American interests and critical infrastructure that we already see conducted by Iran and non-state actors alike we can expect to get...
by Shawn Duffy | Jun 19, 2023 | Blog, CMMC, Compliance, continuous monitoring, DFARS, Featured, Security Awareness Training, SPRS
If you are a prime or subcontractor to the DOD, the DFARS compliance requirement is something you already know. We have been discussing “adequate security” from clause 7012 for some time now. Your service provider may not be able to assess how close you...
by Shawn Duffy | Dec 15, 2022 | Blog, Security Awareness Training
Security Awareness Training (SAT) tells us to never click on a link from some email that we don’t know where it originates. Sound advice. But have you ever wondered what happens when someone does click on that link? The vision is of imminent destruction, and the fear...
by Shawn Duffy | Nov 18, 2022 | Blog, continuous monitoring, Cybersecurity, risk assessment, Security Awareness Training
The Buy Maryland Cybersecurity (BMC) Tax Credit provides an incentive for Maryland companies to purchase cybersecurity services from a Qualified Maryland Cybersecurity Seller (QMCS). Maryland companies that qualify may claim a tax credit for 50% of the net purchase...
by Shawn Duffy | Sep 9, 2022 | CMMC 2.0, Assessments, Blog, CMMC, Compliance, Featured, Incidence Response, risk assessment, Security Awareness Training
If you’re a defense industrial base (DIB) contractor, you’re already aware you need to meet compliance requirements in the new CMMC system, which goes live May 2023. Most government contractors are required to meet CMMC Level 2 requirements. When in...
by Dawn Shuler | Apr 29, 2022 | Blog, Phishing, Security Awareness Training
100+ billion spam emails are sent each day, and 90% of successful breaches start with phishing. “What is phishing?” you might ask. It’s the fraudulent practice of sending emails that seem to be from individuals you know or reputable companies to...