Cyber Security Blog | Assured Bridge | NIST SP 800-171 & DFARS

14 08 '19

A Headstart to Cybersecurity Maturity Model Certification (CMMC)

Cybersecurity Compliance The U.S. Department of Defense (DoD) is planning to implement a new cybersecurity compliance program called Cybersecurity Maturity Model Certification (CMMC). Under this new initiative, any company planning...

30 07 '19

Cybersecurity Maturity Model Certification

The U.S. Department of Defense continues it's push to strengthen the security of the Defense Industrial Base and the critical information contained therein. Businesses either currently involved in, or hoping...

27 06 '19

Multifactor Authentication – Raising the Bar

Organizations doing business with the U.S. Government, or planning to do so, must consider the potential for increased cybersecurity requirements. Contracts that include the creation, communication and/or storage of controlled...

11 06 '19

Business Operating Policies Enable Compliance

Compliance with the security controls described in NIST SP 800-171 Revision 1 and DFARS Clause 252.204-7012 is required for organizations doing business with the U.S. Federal Government that involves the transfer, storage and processing...

15 05 '19

Microarchitecture Data Sampling (MDS) – Zombieload

Vulnerability We are following the news of recently published vulnerabilities to Intel CPU architectures. These vulnerabilities are known as microarchitecture data sampling (MDS) flaws, with implementations variously called Zombieload, RIDL,...

14 05 '19

Information System Maintenance and Compliance for CUI Protection

Maintenance Required If you're a small business working on a government contract that includes requirements for protection of controlled unclassified information CUI, it's important to remember that remaining compliant is...

16 04 '19

Credential Stuffing and NIST SP 800-171

Businesses face a growing number of vulnerabilities and adversarial tactics aimed at compromising the information they hold dear. The data entrusted to organizations in support of government contracts is of...

09 04 '19

NIST SP 800-171 Control Families – Overview

For non-governmental organizations that do, or hope to do, business with the U.S. government, careful consideration must be given to whether controlled unclassified information is part of the specified contract...

02 04 '19

VPN for Business is more than just a VPN

For small businesses involved in contracts with the Federal Government or Department of Defense, compliance with security requirements for the protection of controlled unclassified information (CUI), security for your network...

21 03 '19

World Backup Day and NIST SP 800-171

Backups and Archiving World Backup Day is March 31st – a whole day to help remind us to ensure our valuable information is properly protected and available should the need arise....