Anyone who has ever used an online service such as email or social media is familiar with the term “multifactor authentication.” But is it required as part of the Cybersecurity Maturity Model Certification (CMMC)? In today’s post, we provide all the answers you need. What Is Multifactor Authentication? Multifactor authentication (or MFA for short) is…
Details
As we have seen in previous posts, ITAR data cannot be shared with foreign nationals. But what about Controlled Unclassified Information (CUI), the main object of the Cybersecurity Maturity Model Certification (CMMC)? In today’s post, we discuss everything you need to know about CUI and foreign nationals. Keep reading to learn more. What Is Controlled…
Details
When it comes to the Cybersecurity Maturity Model Certification (CMMC), there are many terms you need to be aware of. One of those acronyms is RPO or Registered Provider Organization. Keep reading to take a closer look at this important part of the CMMC ecosystem. About Registered Provider Organizations (RPOs) Before we delve into the…
Details
You probably understand that FISMA is a piece of legislation that defines cybersecurity standards throughout the federal government. But what is FISMA, exactly, and ( what is its relationship with CMMC? Read on to discover the answers to these questions. About CMMC The Cybersecurity Maturity Model Certification is a framework developed by the Department of…
Details
Defense contractors need to self-assess their compliance with NIST SP 800-171 into the Supply Performance Risk System (SPRS). However, some contractors experience difficulties gaining access to the system through the Procurement Integrated Enterprise Environment (PIIE). If that’s your case, we have good news: you can also submit your SPRS score via email. In today’s post,…
Details
You may think of the Cybersecurity Maturity Model Certification (CMMC) as a framework that deals exclusively with the technical side of cybersecurity. However, the human factor also plays a role in IT. So, does CMMC require background checks? Keep reading to find out. What Is CMMC? The Cybersecurity Maturity Model Certification is a three-level model…
Details
If you are part of the defense industry in any capacity, chances are good that you have read or heard the term “ITAR Countries.” But what are they, exactly? In today’s post, we explore this essential component of ITAR compliance. A Quick Introduction to ITAR The International Traffic in Arms Regulation (ITAR) is a United…
Details
When it comes to ITAR, questions are never in short supply among contractors. For example, one of the most common is “Can I email ITAR data?” In today’s blog, we provide an answer. What Is ITAR Data and Why Is It Important? The International Traffic in Arms Regulations (ITAR) controls the export and import of…
Details
CMMC and FedRamp are two of the compliance regimes every Defense contractor needs to be familiar with. In today’s post, we take a detailed look at the difference in scope, characteristics, and goals between these two frameworks. Keep reading to learn more. What Is CMMC? CMMC stands for Cybersecurity Maturity Model Certification, a three-tier cybersecurity…
Details
While Defense contractors have a lot of questions about the Cybersecurity Maturity Model Certification, “What CMMC level do I need?” Is at the top of the list. With that in mind, today we answer this question and provide some tips on how to achieve CMMC Compliance. How Many CMMC Levels Are There? Let’s start with…
Details