Thoughts on Small Business and Response and Recovery During COVID-19

  • Posted by Mark Lupo
  • On March 18, 2020
Napoleon Hill, author of multiple books, including Think and Grow Rich and The Master Key to Riches, once said, “Every adversity, every failure, every heartache carries with it the seed of an equal or greater benefit.” Though it can be hard for some of us to consider a benefit or opportunity right now, in the […]
Read More
 2

CMMC V1.0 – AC.1.004 – Control Information Posted or Processed on Publicly Accessible Information Systems

  • Posted by Mark Lupo
  • On February 27, 2020
The fourth Practice required to be implemented under CMMC V1.0 within your information security plans, also falls under the Capability, Limit data access to authorized users and processes (C004).  This Practice is titled, Control Information Posted or Processed on Publicly Accessible Information Systems (and is found on Pg 52 of the Appendix B PDF or […]
Read More
 1

Coronavirus (COVID-19) Updates and Resources – 27 Feb 2020

  • Posted by Mark Lupo
  • On February 27, 2020
With all of the information floating around about the novel coronavirus (now named COVID-19), here is some recent information available and links to relevant sites that you may want to bookmark for the most accurate and updated information. First, when compared to influenza for the 2019-2020 season, the prevalence of COVID-19 pales in comparison:  As […]
Read More
 1

CMMC V1.0 – AC.1.003 – Verify, Control and Limit Connections to, and Use of, External Information Systems.

  • Posted by Mark Lupo
  • On February 24, 2020
The third Practice required to be implemented under CMMC V1.0 within your information security plans, falls under the capability, Limit data access to authorized users and processes (C004).  This capability has similarities to the previous one discussed, Control internal system access (C002), and differs only that the expectations within AC.1.003 relate to limiting access to […]
Read More
 2

CMMC V1.0 – Level 1 Compliance – Understanding the Resources and Appendices

  • Posted by Mark Lupo
  • On February 13, 2020
So, as a Department of Defense contractor (Prime or Sub), you have determined that you need to achieve at least Level 1 certification within the Cybersecurity Maturity Model Certification (CMMC) V1.0, though are unsure as to what Level 1 compliance entails.  This article marks the first of several that will dive into each of the […]
Read More
 4

Small Business DoD Contractors – Be Alert, CMMC Has Arrived

  • Posted by Mark Lupo
  • On December 17, 2019
Many reading this post are aware there are significant changes coming for Department of Defense (DoD) contractors (prime or subs) in 2020 and it is essential to be getting ready for these if you intend to continue with existing DoD contracts or obtain new ones.  Currently, DoD allows a business to self-certify compliance to controls […]
Read More
 2

Cybersecurity Maturity Model Certification (CMMC) – A Game Changer for DOD/Government Contracting Businesses

  • Posted by Mark Lupo
  • On October 16, 2019
Here is a brief update on something called the Cybersecurity Maturity Model Certification (CMMC).  This is a game changer for government contractors dealing with DOD in either a prime or sub contracting capacity and goes into effect January 2020 (timeline below).  For those aware of the significance of CMMC, there is a true sense of […]
Read More
 4

Effective Strategic Planning for Small Businesses

  • Posted by IT Support
  • On July 9, 2019
We recently closed out the 1st half of the year and many small businesses are currently in the process of forecasting for the balance of 2019.  Many savvy small businesses understand the value of revisiting their strategic plan at the mid-year point. Those small businesses are asking themselves relevant questions such as what went right during […]
Read More