Insights

When it comes to CMMC compliance, it’s important for utility and energy companies new to CMMC regulations to be focused on the right cybersecurity outcome. It’s not only the auditor with their bureaucratic reporting who you must appease during a periodic...

The Brazilian martial art of jiu-jitsu is not a goal, but a path. It can take well over a decade from starting as a novice to earning a coveted black belt. Just reaching the first belt beyond white – a blue belt – requires as many as a couple of years of...

All risk management starts with business leadership, and that includes managing cybersecurity risk. It doesn’t matter if CEOs have the technical know-how, but it matters greatly that you frame what is worth protecting before leaving how to protect it to IT...

Business leaders need to view cybersecurity with a proactive risk-based approach and stop viewing the strength of their cybersecurity on what standards and compliances they’ve gained via a check-box approach. And the latest case study of ignoring that approach...

The Cybersecurity Maturity Model Certification (CMMC) is a framework being rolled out by the Department of Defense (DoD) in an effort to combat cyber attacks and breaches. Here, we answer common questions about it. The Who, What, and Why of CMMC Compliance 1. Who does...

Threats to today’s defense industrial base (DIB) organizations exist in the digital landscape. That’s why a CISO is one of the most critical hires a defense contractor can make. While DFARS requirements and CMMC compliance are huge topics of conversation,...