If you’re an organization that supports the Department of Defense (DoD), you no doubt understand the importance of protecting information across your IT systems. The federal government recognizes this need as well, which is why they’ve implemented standards that federal contractors must maintain…
Keep Reading »
Intro from Agile IT: This is a guest post from John Verry, CISO and Managing Partner at PivotPoint Security. Businesses that provide products or services to the US Defense Industrial Base (DIB) need to conform with the FAR (e.g., 52.204-12)…
Keep Reading »
Do You Need GCC High for CMMC 2.0? NO! That’s right, you do not need GCC High for CMMC 2.0, not even for level 3. However, you might need GCC High for other reasons. We will go deeper into which…
Keep Reading »
CMMC 2.0 has been released! Early Thursday morning, November 4th, a proposed rule was accidentally published on the Federal Register titled, “Cybersecurity Maturity Model Certification (CMMC) 2.0 Updates and Way Forward“. The associated document (Archived here) sent the CMMC ecosystem…
Keep Reading »
What is the Cyber Incident Notification Act of 2021? The Cyber Incident Notification Act (CINA) (read full text here) began circulating in draft format on June 16th. Led by Mark Warner, Senate Intelligence Chair, Marco Rubio, and Susan Collins, its emergence…
Keep Reading »
Microsoft 365 end users work with substantial amounts of content on a daily basis. Due to legal and regulatory obligations, information may be required to be preserved for a specific amount of time, or may need to be deleted after…
Keep Reading »
In the aftermath of the SolarWinds and Hafnium incidents in recent months, and as panic buying is sweeping multiple states in the wake of the Colonial Pipeline ransomware attack triggering long lines and emergency declarations, this week President Biden signed…
Keep Reading »
For contractors within the Defense Industry Base (DIB), 2021 is a pivotal year. The DoD (Department of Defense) is moving from self-certification models and adopting the Cybersecurity Maturity Model Certification (CMMC). To be eligible to service DoD contracts, contractors must…
Keep Reading »
In recently released special publication 800-172, the National Institute for Standards and Technology (NIST), details enhanced security requirements for controlled unclassified information (CUI) for non-federal systems and organizations. The final version, released on February 2nd, 2021, contains information for protecting the confidentiality, integrity,…
Keep Reading »
February 23rd was a huge day for Microsoft and the Defense Industrial Base (DIB). In a series of posts on the public sector blog, it was announced that Microsoft would now support DFARS 202.204-7012 in Azure Commercial and GCC. This…
Keep Reading »
Protecting the organization’s infrastructure is a critical priority for IT departments in every sector. Cybercrime statistics are sobering. Attacks occur at the rate of one attack every 39 seconds, and 81% of organizations surveyed underwent a successful unauthorized intrusion. Organizations that process and…
Keep Reading »
What is CUI The Controlled Unclassified Information (CUI) program was established by Executive Order 13556 on November 4, 2010, and standardized the way the executive branch handles unclassified information that requires safeguarding. Prior to the CUI program, departments and agencies…
Keep Reading »Have questions or want to learn more about the services and solutions Agile IT has to offer?
Schedule a call with us today!
Schedule a Call