How do cybersecurity and physical security differ? The answer is, they don’t—not anymore. They’re increasingly becoming the same thing.
NEWS & UPDATES
On the 27th of February FEMA announced the Fiscal Year 2024 Financial Assistance/Subsidy Arrangement for private property insurers interested in participating in the National Flood Insurance Program’s (NFIP) Write Your Own (WYO) Program. This announcement contains specific requirements regarding cybersecurity, which need to be attained by private insurance companies participating in NFIP’s WYO.
The Department of Defense’s (DoD) Interim Final Rule that went into effect on 30 November 2020, requires both primes and sub-contractors to submit their NIST SP 800-171 assessment score to the Supplier Performance Risk System (SPRS). While the rule will only impact new contracts, the DoD plans to do 148 Medium Assessments and 81 High Assessments over the next three years, with an estimated 8,823 basic assessment scores to be uploaded on SPRS each year to award new contracts to small businesses. At CyberNINES, we are aware of these changes and committed to helping small and medium-sized businesses accept purchase orders from the DoD and Prime Contractors.
November 2022 TOWN HALL MODERATOR:
OCTOBER 2022 TOWN HALL MODERATOR: JON HANNY
For 18 years, CISA and the National Cyber Security Alliance (NCSA) continue to raise awareness about the importance of cybersecurity across our Nation, ensuring that we all have the resources we need to be safer and more secure online. The following tips would be great to share with employees, family, and friends to raise their cyber awareness to further our protection. Send out one or two tips a week for employee engagement and training.
Podcast Episode 1:
What is CMMC?
In January 2020 the Department of Defense (DoD) announced a new standard for assessing an organization’s cybersecurity posture called “Cybersecurity Maturity Model Certification (CMMC).” According to CMMC, all DoD contractors that process, transmit or store Controlled Unclassified Information (CUI) will be asked to be certified by a third-party assessment organization (C3PAO). The new CMMC program consists of five levels of certification in both cybersecurity practices and processes.
Who is CyberNINES?
I have been doing cybersecurity for over 25 years now; CyberNINES has been around for a year and a half. The talent that makes up CyberNINES® is not new. As a retired navy officer and having spent the last ten years as a practitioner with a defense contractor learning how to get compliant, I have something to offer.
We are glad to be a part of Santa Cruz Works’ business community!