3 March – COVID-19 is in Georgia: How Best to Respond – Resources and Links
As expected, the first cases of COVID-19 were diagnosed yesterday in Fulton County, GA. For most of us, this should not be a surprise and should have been expected. With Atlanta Hartsfield located here, it was only a matter of time. In the coming days we will be seeing more cases in Georgia being diagnosed, […]
2 March – Preparing for the Arrival of COVID-19 in Your Community – Helpful Links and Resources
With COVID-19 continuing to spread across the country and world (though with no confirmed cases in Georgia as of yet), now is a great time to brush off your household and office preparedness plan. Hearing some of the reports of panic buying in California (toilet paper was like gold, said one shopper at Costco), Canada, […]
CMMC V1.0 – AC.1.004 – Control Information Posted or Processed on Publicly Accessible Information Systems
The fourth Practice required to be implemented under CMMC V1.0 within your information security plans, also falls under the Capability, Limit data access to authorized users and processes (C004). This Practice is titled, Control Information Posted or Processed on Publicly Accessible Information Systems (and is found on Pg 52 of the Appendix B PDF or […]
Coronavirus (COVID-19) Updates and Resources – 27 Feb 2020
With all of the information floating around about the novel coronavirus (now named COVID-19), here is some recent information available and links to relevant sites that you may want to bookmark for the most accurate and updated information. First, when compared to influenza for the 2019-2020 season, the prevalence of COVID-19 pales in comparison: As […]
CMMC V1.0 – AC.1.003 – Verify, Control and Limit Connections to, and Use of, External Information Systems.
The third Practice required to be implemented under CMMC V1.0 within your information security plans, falls under the capability, Limit data access to authorized users and processes (C004). This capability has similarities to the previous one discussed, Control internal system access (C002), and differs only that the expectations within AC.1.003 relate to limiting access to […]
CMMC V1.0 – Level 1 Compliance – AC.1.002 – Limiting System Access to Types of Transactions
In this and succeeding entries, we will review one or two Practices per article, focusing on the description of the practice and the clarifying statement and examples provided within Appendix B of CMMC V 1.0. The second practice required to achieve Level 1 compliance under the CMMC standard falls under the second capability, Control internal […]
CMMC V1.0 – Level 1 Compliance – Understanding the Resources and Appendices
So, as a Department of Defense contractor (Prime or Sub), you have determined that you need to achieve at least Level 1 certification within the Cybersecurity Maturity Model Certification (CMMC) V1.0, though are unsure as to what Level 1 compliance entails. This article marks the first of several that will dive into each of the […]
Achieving CMMC Level 1 Certification – Basic Cyber Hygiene
Are you a small business currently fulfilling a Department of Defense (DoD) government contract or do you plan to bid on a contract solicitation in the coming years? Are you a subcontractor to a larger prime that has secured a DoD contract? Are you aware of the current cybersecurity requirements expected of DoD contractors and […]