Author: Ryan Heinrich, Lacework See original Blog SOC 2 compliance is a hot topic in cybersecurity these days, but SOC compliance actually dates back almost four decades. Beginning in 1974, CPAs were required to consider the effects of information technology on...
The first in a multi-part blog series on CMMC. You can find part two, how the unique aspects of the CMMC model are especially well suited to the individual needs of the small and medium businesses in the Defense Supply Chain (DSC), here. Why CMMC? In late 2017 the...
Advanced cybersecurity for defense contractors is under a new magnifying glass: the Cybersecurity Maturity Model Certification. As well as being a completely new way of assessing and granting certification for prime and sub contractors, it could be a clear indicator...
What we’re talking about: ● The DoD says “enough is enough” with faulty defense contractor cybersecurity ● CMMC (Cybersecurity Maturity Model Certification) now required before government contract can be awarded ● Change up: DoD now intends to make...
We have previously gone over the NIST Framework Core and Implementation Tiers, and would now like to dive into the Framework Profiles. Profiles are an organization’s unique positioning of their business requirements; such as the size of the company, industry and...
As we move further into the 21st century, the world as we know it has become even more connected and digitally reliant. Whether you are ordering food or looking for medical advice, there seems to be an app for pretty much everything. While these applications are...
Recent Comments