FutureFeed | CMMC~NIST~DFARS

Partners Pricing Perspectives Events Marketplace Mission

Latest Perspectives

Security Without Governance is not Secure

The Internet has quickly revolutionized the way governments, companies, and other organizations conduct business. But in their haste to gain market share and meet client/constituent expectations, many organizations are pushing out products and services that are not, and using IT infrastructure that is not, secure. This has made it easy for criminals and other adversaries to conduct ransomware attacks, steal data, manipulate systems, and even take control over critical infrastructure. These criminal acts are shutting down governments for weeks on end, forcing businesses out of business, and wreaking havoc on our national security and our economy. This needs to change.

Service Member Inspecting Computer Equipment

DoD Adds Scrutiny to Contractor Cybersecurity Programs

June 16 DoD memo increases pressure on contractors to ensure their cybersecurity programs are in line with requirements.

75% claim CMMC perfection vs 25% meet most controls (according to DIBCAC)

75/25 - We Need You

Regan Edens' LinkedIn post is nothing short of a CMMC national call to action. To bottom line it, there are two facts.

75% of the companies submitting SPRS scores, scored themselves 110 out of 110
Based on two years of DIBCAC assessments only 25% of all companies assessed met most of the required CMMC practices

There is the one most important word that every supplier to the DIB needs to know and needs to know now. Otherwise, they risk their ability to bid on new business as soon as 9 months from now.

That one word?

"START"

Read more...

Water Delivery. Air Force Airman 1st Class Terrell Coleman delivers bottled water near the Makai Recreation Center at Joint Base Pearl Harbor-Hickam, Hawaii, Dec. 21, 2021, while supporting the initiative to restore a safe water delivery system to base military housing communities through testing, treatment and repair. Photo By: Marine Corps Cpl. Hannah Adams. Disclaimer: The appearance of U.S. Department of Defense (DoD) visual information does not imply or constitute DoD endorsement.

Contractors not as Suppliers - but as Leaders

President Biden's Executive Order: "...cybersecurity requires more than government action. Protecting our Nation from malicious cyber actors requires the Federal Government to partner with the private sector."

Here is a way to ACTUALLY deliver on the directive.

DoD CMMC work, like these Rig Ready Marines need to work TOGETHER with market forces for desired outcomes.

Let’s Go DoD, There is Still Time to Fix CMMC.

Whatever the mechanism, make it more profitable to be secure than insecure. That simple market dynamic is all that matters. Here is how to make CMMC work using market economics, rather than fighting them...

Communication is Critical for Effective Cybersecurity

Establishing a Communication Framework

Communication is a critical for an effective cybersecurity program. Taking the time to establish frames of reference can help keep everyone from talking past each other.

FutureFeed and FutureFeed LevelOne logos.

FutureFeed CMMC 2.0 Upgrade

FutureFeed releases its CMMC 2.0 upgrade on Monday, 15 November 2021. Details include the elimination of deprecated practices and processes, user interface changes, and a full merger of NIST 800-171 and CMMC Level 2 - Advanced.

CMMC 2.0 provides self-assessments. Completing one is like following a recipe.

A Holiday Recipe for a Self-Assessment

With many organizations finding themselves relieved of the 3rd-part CMMC assessment requirement, it is time to tackle the challenge of the self-assessment. What does it mean to self-assess, and how to start?

Navy Petty Officer 2nd Class Estrella Santoya signals to an F/A-18E Super Hornet on the flight deck of the USS Abraham Lincoln in the Pacific Ocean, Nov. 6, 2021.

Self-Assessments. So we are off the hook. Right?

Using DoD’s numbers, that means 180,000 companies or more can simply self-assess their environments. DoD’s “risk-based approach” sounds great, and those 180,000+ contractors we are off the hook, right?

Not so fast.