Best Practices in Technology

A blog for understanding best practices in technology

Entries related to: nist-cmmc

NIST 800-171 versus CMMC

Since the end of 2017, all subcontractors working within Department of Defense (DoD) supply chains were required to comply with the NIST 800-171 mandate. Since then, the Cybersecurity Maturity Model Certification (CMMC) has been published. Suppliers need to understand the differences between NIST 800-171 and CMMC and how they impact DoD contracts under which they are working.
Read More

NIST Compliant File Sharing

Today's business environment requires collaboration. Your employees need to be able to share files within the organization as well as with clients and partners. But only if it's done securely.
Read More

What is CMMC Compliance?

The Cybersecurity Maturity Model Certification (CMMC) was created to enhance the cybersecurity posture of companies participating in US government supply chains. As of December 31, 2017, defense and government suppliers had to comply with NIST 800-171. Starting in 2020, the DoD will gradually transition federal contract information to include CMMC instead of NIST 800-171.
Read More

Revision 2 of NIST SP 800-171 is Released

As of December 31, 2017, companies that provide parts and services for suppliers serving federal and local governments must comply with the NIST 800-171 mandate. There have been some recent changes in how compliance is managed for this mandate.
Read More

CMMC Version 1.0 is Released

To increase the cybersecurity posture of companies operating in government supply chains, the Department of Defense announced the creation of the Cybersecurity Maturity Model Certification (CMMC) in 2019, and a draft was made available. On January 30, 2020, the DoD released Version 1.0 to the public.
Read More

Cybersecurity Maturity Model Certification & NIST Compliance

As of December 31, 2017, companies that provide parts and services for suppliers serving the government were required to be compliant with the NIST 800-171 mandate. Starting in 2020, a new certification will be required: Cybersecurity Maturity Model Certification.
Read More

Why We Align Our Practice with the NIST Cybersecurity Framework

Companies across all industries have taken steps to protect their data and prevent cybercrime. The use of information security frameworks grew out of a need for organizations to follow a set of steps to protect information. By selecting a cybersecurity framework, companies could adopt a set of policies and procedures around the implementation and ongoing management of information security controls in an enterprise environment.
Read More

Using Managed SIEM for Compliance

  GDPR, NIST, HIPAA, PCI... The names may change but it all comes down to control, visibility, and auditing.
Read More

The Definitive Guide to NIST Compliance

Companies that are working with the government (either directly or indirectly further down the federal supply chain) should be compliant with the latest NIST 800-171 mandate as of December 31, 2017.
Read More

Leveraging Microsoft Office 365 to Comply with NIST 800-171

Depending on the customers you serve and the industry in which you operate, there may be mandates to which you must comply in regard to the security of data.
Read More

Subscribe to Email Updates