Reading Time: 2 minutes
With the finalization in March 2022 of NIST SP 800-172A, Assessing Enhanced Security requirements for Controlled Unclassified Information, the US Department of Defense (DoD) can potentially move closer to rolling out an assessment...
Reading Time: 2 minutes
CMMC and NIST 800-171 compliance oversight is gaining momentum not just from the US Department of Defense (DoD) but also other federal agencies, such as the Department of Homeland Security (DHS) and the General Services Agency (GSA)....
Reading Time: 3 minutes
Third parties that store, transmit and/or process sensitive data inherently introduce an element of security and compliance risk to their clients—and potentially vice versa. Case in point: managed service providers (MSPs) and managed...
Reading Time: 2 minutes
Managed service providers (MSPs) and managed security service providers (MSSPs) in the US defense industrial base (DIB) and other US government supply chains now face elevated scrutiny from clients regarding the flow of controlled...
Reading Time: 3 minutes
As CMMC 2.0 and NIST 800-171 compliance efforts gather steam, managed service providers (MSPs) and managed security service providers (MSSPs) in defense and other US government supply chains need to look carefully at whether/how they...