CMMC V1.02 – IA.1.077 – Authenticate Identities of Users, Processes, or Devices
The second practice within the Domain, Identification and Authentication (IA) and Capability, Grant access to authenticated entities, is IA.1.077, Authenticate ( or verify ) the identities of those users, processes, or devices, as a prerequisite to allowing access to organizational information systems. This sounds a lot more complicated than it actually is. Essentially, this practice […]
CMMC V1.02 – IA.1.076 – Identify Information System Users, Processes Acting on Behalf of Users or Devices.
After somewhat of a hiatus due to the response efforts for the 1st wave of the COVID-19 outbreak, we are picking up where we left off in late February with the 5th of the practices required to achieve Level 1 CMMC, Basic Cyber Hygiene. We move to a second domain with the 5th practice for […]
Thoughts on Small Business and Response and Recovery During COVID-19
Napoleon Hill, author of multiple books, including Think and Grow Rich and The Master Key to Riches, once said, “Every adversity, every failure, every heartache carries with it the seed of an equal or greater benefit.” Though it can be hard for some of us to consider a benefit or opportunity right now, in the […]
13 March – COVID-19 Update – Clarifying Signs and Symptoms to Influenza
With COVID-19 upon us and dramatic actions taken around the world to create social distancing, several questions have emerged as to how best to differentiate between the signs and symptoms of COVID-19 to influenza or even the common cold. As you are probably aware, the general signs and symptoms of active COVID-19 are very similar […]
2 March – Preparing for the Arrival of COVID-19 in Your Community – Helpful Links and Resources
With COVID-19 continuing to spread across the country and world (though with no confirmed cases in Georgia as of yet), now is a great time to brush off your household and office preparedness plan. Hearing some of the reports of panic buying in California (toilet paper was like gold, said one shopper at Costco), Canada, […]
Coronavirus (COVID-19) Updates and Resources – 27 Feb 2020
With all of the information floating around about the novel coronavirus (now named COVID-19), here is some recent information available and links to relevant sites that you may want to bookmark for the most accurate and updated information. First, when compared to influenza for the 2019-2020 season, the prevalence of COVID-19 pales in comparison: As […]
CMMC V1.0 – AC.1.003 – Verify, Control and Limit Connections to, and Use of, External Information Systems.
The third Practice required to be implemented under CMMC V1.0 within your information security plans, falls under the capability, Limit data access to authorized users and processes (C004). This capability has similarities to the previous one discussed, Control internal system access (C002), and differs only that the expectations within AC.1.003 relate to limiting access to […]
Cybersecurity Maturity Model Certification (CMMC) – A Game Changer for DOD/Government Contracting Businesses
Here is a brief update on something called the Cybersecurity Maturity Model Certification (CMMC). This is a game changer for government contractors dealing with DOD in either a prime or sub contracting capacity and goes into effect January 2020 (timeline below). For those aware of the significance of CMMC, there is a true sense of […]