Compliance

In the News: NEO Blockchain adds Spatium™ wallet to the list of approved wallets

In recent news, Spatium announced that its wallet for storing cryptocurrency was accepted into the NEO blockchain community.  In order to be accepted into the selective community, Spatium’s wallet underwent multiple, rigorous technical security reviews.  Sera-Brynn was the independent third-party evaluator.  Spatium states that its “software wallet promises greater security than today’s hardware wallets based… Read more »

Our 5 Favorite Blogs of 2018 on Cybersecurity and Privacy for Businesses

FedRAMP strategy, red teaming, NIST privacy standards, evolving Federal acquisition rules, Ohio’s new cybersecurity safe harbor law – these are some of the Sera-Brynn staff blog topics from 2018.  We wrote about GDPR (but are still digesting PIPEDA, the Canadian privacy law).  We continued to talk about the FAR Reform.  We published a guest blogger’s… Read more »

GSA’s proposed new rule to govern data breaches, government access, proprietary information, and contractor responsibilities

In November 2018, U.S. General Services Administration (GSA) published its intent to enact a new rule on the reporting of data breaches. GSA is the U.S. government’s lead contracting agency. GSA also manages many government-wide IT security programs, like FedRAMP and cloud.gov. The proposed rule will ensure that GSA, plus the agency customer, will have… Read more »

Ohio’s New Cybersecurity Law Grants Data Breach Litigation Safe Harbor

Ohio’s law – effective November 2018 – creates a safe harbor for organizations that adopt one of 10 cybersecurity compliance frameworks. With a new cybersecurity law, the home of the Rock and Roll Hall of Fame is now rocking the cybersecurity framework discussion. Effective November 2, 2018, Ohio’s law puts cybersecurity frameworks centerstage. The law… Read more »

PRESS RELEASE: New Blockchain-Powered SaaS for Cybersecurity Compliance Announced

Carver, Sera-Brynn’s new blockchain-powered SaaS offering, visualizes and manages cybersecurity compliance across enterprises and supply chains. Press Release – Suffolk, VA, Oct. 30, 2018  – Sera-Brynn, a leading cybersecurity audit and advisory firm, today unveiled Carver, a new software-as-a-service (SaaS) offering that helps organizations manage their security and regulatory compliance. “Sera-Brynn originally built Carver to… Read more »

Still Lagging on DFARS? The Navy Has A Memo For You

by Heather Engel, Sera-Brynn Chief Strategy Officer The Assistant Secretary of the Navy recently released a memo imposing additional requirements on select contracts. For the last three years, Defense contractors have been working (some more diligently than others) to comply with DFARS clause 252.204-7012 that requires implementation of NIST SP 800-171. I’ve written numerous articles… Read more »

The Kaspersky Ban

October 1, 2018 Deadline for Government Contractors to Comply with the FAR Ban on Kaspersky Lab Products Nears On October 1, 2018, U.S. government contractors will need to be compliant with the government-wide ban on the use of Kaspersky Lab products and services in support of their government contracts.  An interim rule requiring the insertion… Read more »

The Heavyweight Rules and Concepts You Need to Know About FedRAMP

The first rule of FedRAMP is … You do not talk about FedRAMP! (Sorry, that’s of course a quote from Fight Club, a movie about an insomniac office worker looking to shake things up with, well… fighting.) The real first rule about FedRAMP is that companies should attain the certification to show that their cloud… Read more »

Self-Assessment and Re-Validation: Maintaining Compliance and Internal Cyber Audits Webinar

  Webinar: Government Contracts Cyber Café Series — Self-Assessment and Re-Validation: Maintaining Compliance and Internal Cyber Audits Registration is required to join this event. If you have not registered, please use the link below. Event status: Not started (Register) Date and time: Tuesday, August 21, 2018 8:30 am Eastern Daylight Time (New York, GMT-04:00) Duration:… Read more »

A Cybersecurity Checklist for GDPR

Where Does Cybersecurity Fit into GDPR? By Heather Engel, Sera-Brynn Chief Strategy Officer By now most everyone has heard of GDPR, or at the very least been bombarded by pop-up messages asking you to accept cookies and confirm access to your data as you surf the web. But if you are responsible for the security… Read more »