Has anybody seen a document marked as CUI yet?  Most people would answer no.  But never the less DFARS 7012/NIST 800-171 and the new Cybersecurity Maturity Model Certification are all about protection CUI.  It’s how the DoD but also soon all government agencies will require verified conformance with the requirement to protect sensitive government documents, […]

The pending inclusion of the Cyber Maturity Model Certification in the DFARS and the existing DFARS 7012 are centered on protecting controlled unclassified information (CUI).  Industrial control equipped environments such as manufacturers, building developers and managers or grid suppliers for example  Have more than just IT networks to contend with.  Vulnerabilities in operational technology (OT) […]