30 07 '19
Cybersecurity Maturity Model Certification

Cybersecurity Maturity Model Certification

The U.S. Department of Defense continues it's push to strengthen the security of the Defense Industrial Base and the critical information contained therein. Businesses either currently involved in, or hoping...
27 06 '19
Multifactor Authentication – Raising the Bar

Multifactor Authentication – Raising the Bar

Organizations doing business with the U.S. Government, or planning to do so, must consider the potential for increased cybersecurity requirements. Contracts that include the creation, communication and/or storage of controlled...
11 06 '19
Business Operating Policies Enable Compliance

Business Operating Policies Enable Compliance

Compliance with the security controls described in NIST SP 800-171 Revision 1 and DFARS Clause 252.204-7012 is required for organizations doing business with the U.S. Federal Government that involves the transfer, storage and processing...
15 05 '19
Microarchitecture Data Sampling (MDS) – Zombieload

Microarchitecture Data Sampling (MDS) – Zombieload

Vulnerability We are following the news of recently published vulnerabilities to Intel CPU architectures. These vulnerabilities are known as microarchitecture data sampling (MDS) flaws, with implementations variously called Zombieload, RIDL,...
16 04 '19
Credential Stuffing and NIST SP 800-171

Credential Stuffing and NIST SP 800-171

Businesses face a growing number of vulnerabilities and adversarial tactics aimed at compromising the information they hold dear. The data entrusted to organizations in support of government contracts is of...
09 04 '19
NIST SP 800-171 Control Families – Overview

NIST SP 800-171 Control Families – Overview

For non-governmental organizations that do, or hope to do, business with the U.S. government, careful consideration must be given to whether controlled unclassified information is part of the specified contract...
02 04 '19
VPN for Business is more than just a VPN

VPN for Business is more than just a VPN

For small businesses involved in contracts with the Federal Government or Department of Defense, compliance with security requirements for the protection of controlled unclassified information (CUI), security for your network...
21 03 '19
World Backup Day and NIST SP 800-171

World Backup Day and NIST SP 800-171

Backups and Archiving World Backup Day is March 31st – a whole day to help remind us to ensure our valuable information is properly protected and available should the need arise....