Product Briefs

The Cybersecurity Maturity Model Certification (CMMC) 2.0 program, published in November 2021, introduces new standards of accountability and security in the defense industry. CMMC is

In an effort to address growing concerns about the maturity of cybersecurity practices within the Federal Government, in May of 2021 the White House released

It is important to recognize that each of the foundational capabilities within the Zero Trust Model carries the requirement for continuous, dynamic functionality. Meaning, the

Maintaining and demonstrating compliance with NERC CIP is often implemented by manually collecting evidence of human activity, business processes, policies, and snapshots of limited technical

The Intelligence Community Standard (ICS) 500-27 is considered the gold standard for enterprise audits at federal agencies and critical infrastructure sector companies. That is to

The Payment Card Industry Data Security Standard (PCI DSS) was put in place to protect cardholder data. The PCI Council was established by American Express,

A data-driven approach to RMF uses data automatically collected from your IT environment to streamline, automate, and inform decision-making to manage the cybersecurity risks with

The Sarbanes-Oxley Act of 2002, often called SOX, typically brings financial accounting standards to mind, along with a few controversial company names—think Enron, Tyco, WorldCom,