CMMC V1.0 – AC.1.004 – Control Information Posted or Processed on Publicly Accessible Information Systems

  • Posted by Mark Lupo
  • On February 27, 2020
The fourth Practice required to be implemented under CMMC V1.0 within your information security plans, also falls under the Capability, Limit data access to authorized users and processes (C004).  This Practice is titled, Control Information Posted or Processed on Publicly Accessible Information Systems (and is found on Pg 52 of the Appendix B PDF or […]
Read More
 1

CMMC V1.0 – AC.1.003 – Verify, Control and Limit Connections to, and Use of, External Information Systems.

  • Posted by Mark Lupo
  • On February 24, 2020
The third Practice required to be implemented under CMMC V1.0 within your information security plans, falls under the capability, Limit data access to authorized users and processes (C004).  This capability has similarities to the previous one discussed, Control internal system access (C002), and differs only that the expectations within AC.1.003 relate to limiting access to […]
Read More
 1

CMMC V1.0 – Level 1 Compliance – AC.1.002 – Limiting System Access to Types of Transactions

  • Posted by Mark Lupo
  • On February 18, 2020
In this and succeeding entries, we will review one or two Practices per article, focusing on the description of the practice and the clarifying statement and examples provided within Appendix B of CMMC V 1.0.  The second practice required to achieve Level 1 compliance under the CMMC standard falls under the second capability, Control internal […]
Read More
 1

Achieving CMMC Level 1 Certification – Basic Cyber Hygiene

  • Posted by Mark Lupo
  • On February 10, 2020
Are you a small business currently fulfilling a Department of Defense (DoD) government contract or do you plan to bid on a contract solicitation in the coming years?  Are you a subcontractor to a larger prime that has secured a DoD contract?  Are you aware of the current cybersecurity requirements expected of DoD contractors and […]
Read More
 1

Small Business DoD Contractors – Be Alert, CMMC Has Arrived

  • Posted by Mark Lupo
  • On December 17, 2019
Many reading this post are aware there are significant changes coming for Department of Defense (DoD) contractors (prime or subs) in 2020 and it is essential to be getting ready for these if you intend to continue with existing DoD contracts or obtain new ones.  Currently, DoD allows a business to self-certify compliance to controls […]
Read More
 2

Cybersecurity Maturity Model Certification (CMMC) – A Game Changer for DOD/Government Contracting Businesses

  • Posted by Mark Lupo
  • On October 16, 2019
Here is a brief update on something called the Cybersecurity Maturity Model Certification (CMMC).  This is a game changer for government contractors dealing with DOD in either a prime or sub contracting capacity and goes into effect January 2020 (timeline below).  For those aware of the significance of CMMC, there is a true sense of […]
Read More
 3

Change – Win With It!

  • Posted by Ashley Panter
  • On March 5, 2019
Throughout my life there has been one constant factor in my business and sports career and that factor has been change. When I first entered professional football it was quite an adjustment. I had to change my routines and communicate to my new team, especially the snapper and holder, the critical value they bring to the […]
Read More