CMMC-AB Standards Committee hosts the fourth Standards Podcast

Posted Posted in News

Regan Edens, Chair of the CMMC-AB Standards Committee, hosts the fourth Standards Podcast. He is joined by Jeff Dalton, Chair of the Certification and Accreditation Committee. The topic of Episode 4 is scoping requirements associated with a CMMC Level 3 organiziation, looked at from an assessor’s perspective, the Organization Seeking Certification (OSC) perspective, and a […]

DovesTip 02 – What is Controlled Unclassified Information (CUI)

Posted Posted in DovesTip

Has anybody seen a document marked as CUI yet?  Most people would answer no.  But never the less DFARS 7012/NIST 800-171 and the new Cybersecurity Maturity Model Certification are all about protection CUI.  It’s how the DoD but also soon all government agencies will require verified conformance with the requirement to protect sensitive government documents, […]

DovesTip 01 – CMMC Vulnerability & Patch Management Strategies NIST 800-171

Posted Posted in DovesTip

The pending inclusion of the Cyber Maturity Model Certification in the DFARS and the existing DFARS 7012 are centered on protecting controlled unclassified information (CUI).  Industrial control equipped environments such as manufacturers, building developers and managers or grid suppliers for example  Have more than just IT networks to contend with.  Vulnerabilities in operational technology (OT) […]