- August 23, 2023 (A look inside the leaked documents of CMMC v2.1)
- July 26, 2023 (Breaking News: the CMMC rule is coming)
- June 28, 2023 (What's new in NIST 800-171r3?)
- June 7, 2023 (NIST 800-171r3 -- Coming soon! (sooner than expected))
- May 15, 2023 (Breaking News: NIST 800-171r3 released)
- May 4, 2023 (New resources for defense contractors)
- April 19, 2023 (Commonly misunderstood practices in CMMC)
- March 22, 2023 (Free resources to help meet Awareness & Training requirements in CMMC L2)
- December 7 2022 (Having N/A in your SSP, isolated systems)
- November 21 2022 (October 1, 2025 is the date, Cost & Timeline)
- November 7, 2022 (Lessons Learned from first CMMC Voluntary Assessments)
- October 5, 2022 (CMMC breaking out, cost & timeline, VDI, most common failures)
- September 29, 2022 (Basic and Medium Assessments, What does your SSP look like?)
- August 24, 2022 (What can/should you be doing now?)
- August 10, 2022 (What does the CAP mean for your organization?)
- July 27, 2022 (The June Memo and the FAC)
- July 13, 2022 (Hot news from recent conferences and webinars)
- April 20, 2022 (Medium Assessments. Asset Categories & July 2023)
- March 16, 2022 (The CMMC 2.0 Rumor Mill)
- February 9, 2022 (CMMC 2.0 Scoping Guide: Contractor Risk Managed Assets)
- December 7, 2021 (CMMC 2.0 Scoping guides are here!)
- November 17, 2021 (More information on CMMC 2.0)
- November 4, 2021 (Announcing CMMC 2.0 and The Way Forward)
- October 13, 2021 (Cyber incident reporting and the importance of candor)
- September 8, 2021 (Increased pressure and rampant confusion: NIST 800-171 Self Assessment & SPRS)
- August 18, 2021 (AC.1.001: ”Authorized” users vs. “Authenticated”)
- August 11, 2021 (Understanding the CMMC assessment guides)
- July 26, 2021 (Should we be swimming or treading water?)
- June 14, 2021 (First authorized C3PAO encourages scope reduction)
- June 2, 2021 (Biden’s EO, Salazar’s testimony and the future of the CMMC)
- April 28, 2021 (It's Not Something You buy)
- April 14, 2021 (It's a Marathon, Not a Sprint) -- technical debt
- March 22, 2021 (Understanding Multi-Factor Authentication)
- March 1, 2021 (If it isn't written down, it doesn't exist)
- February 25, 2021 (The assessment process: evidence, the assessment plan, physical assessment, readiness review)
- February 22, 2021 (The assessment process: templates, context & intent)
- February 17, 2021 (Hot Topics: cloud security, scoping)
- February 11, 2021 (Hot Topics: self-assessment, pilot contracts & flowdown )
- February 2, 2021 (Choosing the best people/orgs to help you)
- January 25, 2021 (The CMMC Process, Path to Compliance)
- January 21, 2021 (Follow the data, Assessment or Audit?)
- January 18, 2021 (What is process maturity? Documentation requirements)
- December 7, 2020 (CMMC Assessment Guides, RP/RPO, intro workshop Dec 15)
- November 18, 2020 (SPRS assessment score required for ALL, common issues in DIBCAC assessments and the first 15 contracts coming out soon)
- November 5, 2020 (Lessons from a Provisional Assessor, more on the SPRS assessment score requirement)
- October 26, 2020 (The interim rule is out, and it has a few surprises!)
- October 13, 2020 (The time to prepare is now, Start with a gap analysis and Primes, start talking to your subs)
- Introduction
