CMMC 2.0 - Waiting on the Final Rule Can Have Consequences
CMMC 2.0 - Are You Stuck on Your CMMC Journey?
CMMC is Not all Technical, Technically Speaking
Emphasizing Continuous Compliance Monitoring
The concept of continuous monitoring has always existed. Everything that requires a periodic assessment by default requires continuous monitoring. The concept of continuous monitoring is a proactive[...]
CMMC Assessment Process (Draft) is Published
CMMC Assessment Process (Draft) is Published
Critical Infrastructure Series: Part III Operational Technology
Critical Infrastructure Series: Part III
Operational Technology Cybersecurity
In Part I of the Critical Infrastructure Series, we covered the importance of protecting the nation’s critical[...]
CMMC and HIPAA: What is the Connection?
Consider this scenario; you are a Chief Information Security Officer (CISO) for a major university hospital system, with over 10 years of experience working with protected health information[...]
CMMC 2.0 and Defense Cybersecurity Compliance
In early November, the DoD released an announcement for version 2 of the CMMC compliance standard. Developed with feedback from defense agencies and contractors, CMMC 2.0 seeks to streamline the[...]
The Cybersecurity Maturity Model: A Path to CMMC Certification
Note: This blog post is an adaptation of a presentation given by SecureStrux Governance, Risk and Compliance Practice Lead Tony Buenger at the California Polytechnic Institute on October 20, 2021.