Blog

Getting Ready for CMMC | Recommended Resources and Links

The Department of Defense’s Cybersecurity Maturity Model Certification (CMMC) program will be a new contractual requirement for all DoD contractors. It will impact the 300,000 firms that make up the defense industrial base.  It will not be a self-attestation model, but rather a third-party certification and compliance model. In 2020, the DoD plans to finalize… Read more »

Cybersecurity Maturity Model Certification (CMMC) Version 0.7 Arrives!

  The Cybersecurity Maturity Model Certification (CMMC) Draft Version 0.7 is live and available here. Version 0.7 includes Level 4-5 practices and modifies some maturity processes and Level 1-3 practices. This draft is another step closer to the final version — CMMC 1.0. The CMMC will be a new contractual requirement for all DoD contractors. … Read more »

What’s New in CMMC Draft Version 0.6?

In November, the DoD released the newest draft of the  Cybersecurity Maturity Model Certification (CMMC), version 0.6.  CMMC Version 0.6 revised Levels 1-3.  Levels 4-5 are expected to be addressed in the next version. Key points on FCI and CUI Levels 1 and 2 are not intended for Controlled Unclassified Information (CUI). Instead, Levels 1… Read more »

National Cybersecurity Career Awareness Week – We Need YOU!

  “You are more qualified than you may think.” When looking for a career path, many people examine areas of interest that have 2 key factors: available jobs and good pay. The United States Department of Labor’s occupational employment statistics are updated every spring to highlight trends in these factors. There has been a lot… Read more »

Cybersecurity Maturity Model Certification (CMMC) Version 0.6 Arrives

  The Cybersecurity Maturity Model Certification (CMMC) Draft Version 0.6 is live and available here. Draft version 0.6 includes CMMC Levels 1 – 3. Of note, “CMMC Levels 4-5 are not included in this release because public comments are still being addressed.”  The updates to CMMC Levels 4 – 5 are expected to be provided… Read more »

NDIA Cybersecurity Workshop in Tampa, Fla. Event (11/13/2019) to Feature Sera-Brynn’s Samuel Morthland

Sera-Brynn Executive Vice President for Federal Services, Samuel Morthland, has been invited to share current insights as auditors concerning “The State of Cybersecurity Compliance” during the NDIA Cybersecurity Workshop on Wednesday, November 13, 2019 in Tampa, Florida. The Cybersecurity Workshop will feature experts from industry, government, and military on cybersecurity, cyber defense, and U.S. national… Read more »

Sera-Brynn Announces Original Investor as Executive Vice President for Federal Services

Suffolk, VA – Global Cybersecurity Firm, Sera-Brynn, LLC, announced today it has welcomed Mr. Samuel P. Morthland, an original investor, to the management team as the Executive Vice President for Federal Services. Mr. Morthland will manage the company’s business strategy and development efforts supporting the Federal and Department of Defense cybersecurity compliance services market. “I… Read more »

Own It, Secure IT and Protect IT: National Cybersecurity Awareness Month Kicks Off with a Theme of Personal Accountability

National Cybersecurity Awareness Month 2019 focuses on being accountable and proactive — hence the “Own IT. Secure IT. Protect IT.” slogan. Here are some tips and references on how you can incorporate this into your daily activities at work, home, and on the go: Social Media Multi-factor authentication, or MFA, is widely available now and… Read more »

Navy Gets Tough on DFARS Cybersecurity Compliance with Updated Acquisition Regulations

Last year we told you about a 2018 Navy memo, known as the Geurts Memo, which required defense contractors to implement certain controls for NIST SP 800-171, some of them going beyond 171 requirements. If you didn’t see our write-up, it can be found here: “Still Lagging on DFARS? The Navy Has A Memo For… Read more »

The Higher Ed Model for Cybersecurity Compliance

There are fundamental challenges to fully implementing the NIST 800-171 cybersecurity framework. However, a new study shows that higher education institutions overcome these challenges and place among the top tier of organizations for compliance. Organizations that handle sensitive government information and data face a foreign intelligence threat that is unprecedented in history. Despite this, most… Read more »