Join Mark Berman, CEO of FutureFeed, as he engages in a compelling discussion with Leia Shilobod at CIC 2024 in Mission Bay, San Diego.

As a Managed Service Provider (MSP) with a focus on aiding Defense Industrial Base (DIB) contractors in achieving and maintaining compliance, Leia shares her extensive experience and the crucial role of tools like FutureFeed in streamlining the compliance process.

In an insightful conversation at CIC2024, Mark Berman, CEO of FutureFeed, engaged with Victoria Yan Pillitteri, Manager of Security Engineering and Risk Management Group at National Institute of Standards and Technology (NIST), discussing the pivotal role of standards in cybersecurity.

The dialogue shed light on NIST's continuous effort in enhancing security controls and standards in response to evolving threats, underscoring the inclusive approach where every stakeholder, regardless of size, has a voice in shaping these standards.

A must-watch for anyone involved in or interested in cybersecurity, illustrating the dynamic, user-focused process of standard development at NIST.

NIST released an initial discussion draft of SP 800-171 revision 3 ("r3") on May 10, 2023. This article discusses that draft, suggested actions for our clients while we await the finalization of r3, and our implementation plans for supporting r3.

Hello, dear friends! Today, we're going to discuss a situation that many of you may have experienced or might encounter in the future – being "burdened" with the task of getting your company compliant. At first glance, this might seem like a daunting and undesirable responsibility. But, what if I told you that this assignment could actually be a blessing in disguise and a career-changing opportunity? Intrigued? Let's explore the reasons why embracing this challenge can transform your professional journey and unlock a world of possibilities.

DoD published a new DFARS rule (DFARS 252.204-7024) which allows contracting officers to consider supply chain risk as they are making contract awards. Read on for more!

The Internet has quickly revolutionized the way governments, companies, and other organizations conduct business. But in their haste to gain market share and meet client/constituent expectations, many organizations are pushing out products and services that are not, and using IT infrastructure that is not, secure. This has made it easy for criminals and other adversaries to conduct ransomware attacks, steal data, manipulate systems, and even take control over critical infrastructure. These criminal acts are shutting down governments for weeks on end, forcing businesses out of business, and wreaking havoc on our national security and our economy. This needs to change.

June 16 DoD memo increases pressure on contractors to ensure their cybersecurity programs are in line with requirements.

Whatever the mechanism, make it more profitable to be secure than insecure. That simple market dynamic is all that matters. Here is how to make CMMC work using market economics, rather than fighting them...

Communication is a critical for an effective cybersecurity program. Taking the time to establish frames of reference can help keep everyone from talking past each other.

FutureFeed releases its CMMC 2.0 upgrade on Monday, 15 November 2021. Details include the elimination of deprecated practices and processes, user interface changes, and a full merger of NIST 800-171 and CMMC Level 2 - Advanced.

With many organizations finding themselves relieved of the 3rd-part CMMC assessment requirement, it is time to tackle the challenge of the self-assessment. What does it mean to self-assess, and how to start?