All Articles
No MFA… And No Password!
I was recently on a CMMC assessment where the company had an Ubuntu machine. I asked them to log on...
Risk Management: Not Just Technical
Risk management is tough — especially when it comes to CMMC control 3.11.1. A lot of companies don’t actually have...
Know Your Options…
What Happens When CMMC Meets a Mom-and-Pop Machine Shop? Let me tell you the story of a small, two-person machine...
Your Risk Belongs to You. Own it.
This past Thursday, I attended the North Texas ISSA Lunch and Learn. The speakers— Curtis Simpson, Julio Casablanca M.Sc., CISSP, CCISO., and Miguel...
CMMC Assessment Requirements for External Service Provid...
Are you confused about the how External Service Providers (ESPs) fit into an organizations CMMC assessment? You’re not alone! The...
Modifying Documents to Remove ITAR/CUI Designations
Quantum Naval Solutions (QNS) has a concern. Most of the components they design are unique parts for a cutting edge...
VDI Solutions- Not Right for Everyone
One innovative solution for reducing CMMC compliance cost and implementation time is a Virtual Desktop Interface (VDI). VDIs create a...
Addressing CMMC Nuances
Quantum Naval Solutions has followed the government’s lead and informed employees that they can no longer work remotely. This is...
Building Engagement Through Practical Training
Implementing cybersecurity frameworks like CMMC appears at first glance to be mostly about putting technical controls in place to protect...
