Category Archives: Compliance

CMMC vs NIST 800 171, What’s the Difference? 

Auditor and business owner going over paperwork

Businesses have a lot to worry about these days, and compliance with government regulations is one of those concerns. Two important compliance frameworks are NIST 800 171 and CMMC. But what’s the difference between them? And which one should your business be following?  In this blog post, we’ll answer those questions and help you decide […]

How To Implement 2022 NIST Password Updates into Your Policy

2022 NIST Password Updates

With the increasing number of cyberattacks, it is more important than ever to have up-to-date password policies in place for your business. The National Institute of Standards and Technology (NIST) has released new guidelines for passwords, and we are here to help you implement them into your existing policy. In this blog post, we will […]

Is Your IT Compliant? 4 Common Mistakes

File folders titled compliance, and violations

A business needs a proper and monitored IT system in order to thrive. Once a system is installed, all systems need to comply with governance and data standards, including security. Here’s the lowdown on four common mistakes and why you need to be aware of your system’s IT compliance. IT Compliance Mistake 1: Not Updating […]

The NIST Cybersecurity Principles That All SMBs Should Follow

NIST cybersecurity checklist

Cybersecurity has become one of business’s hottest topics, with many high-profile data leaks across our nation prompting companies to increase their security resources. Even companies like Facebook and Google are continually showing up in courtrooms and trying to find ways to eliminate increasingly sophisticated threats.  On a smaller scale, cybersecurity threats are higher than ever […]

Virginia’s New Data Privacy Law

Businesses and consumers of Virginia will soon have to adjust to a new data privacy law.  Following in the footsteps of California, Virginia just became the second state to adopt an online data protection law for consumers that is comprehensive. This affects everyone from general consumers to companies that provide IT services and everyone in […]

3 Reasons DFARS Compliance Does Not Mean Security

It has been more than five months since the Dec. 31, 2017, deadline for government contractors to meet DFARS compliance. Businesses of all sizes are still feeling the pressure to implement a System Security Plan (SSP) and Plan of Action & Milestones (POAM). Failing to meet compliance means government contractors run the risk of losing […]

3 Keys to DFARS/NIST 800-171 Cybersecurity Compliance

3 Keys to DFARS/NIST 800-171 Compliance

For federals contractor with the Department of Defense (DoD), General Services Administration (GSA), and National Aeronautics and Space Administration (NASA), the Dec. 31, 2017 deadline to comply with DFARS/NIST 800-171 or show a plan to do so has come and gone. Without compliance, your business is not only vulnerable to evolving cyberthreats but also subject […]