NIST

Q&A with Sera-Brynn on the DoD Interim Rule, SPRS, and the November 30 Deadline that Isn’t Really a Deadline.

On September 29, 2020, the Department of Defense (DoD) released an interim rule to begin the implementation of its Cybersecurity Maturity Model Certification (CMMC) framework. The majority of the interim rule focuses on new requirements for confirming that contractors are currently in compliance the 110 security controls of National Institute of Standards and Technology (NIST)… Read more »

Press Release: “Reality Check 2020” – New Report on Defense Industry Implementation of NIST SP 800-171

Cyber risk across the Defense Industrial Base is increasing – and so are cyber rules and regulations from the Department of Defense. This report provides a current snapshot of the DIB’s state of compliance with NIST SP 800-171, including trends we’ve noticed in the past year and specific trouble areas. Read this complimentary report. FOR… Read more »

Using NIST SP 800-171A to Perform Self-Assessments and Scoring under the New DFARS Cybersecurity Rule

You are probably well aware at this point that the Department of Defense has published new (interim) cybersecurity rules (effective November 30, 2020). Much of the press around this announcement has been about the Cybersecurity Maturity Model Certification (CMMC). However, it is unknown when and to whom CMMC will apply over the next five years…. Read more »

ICYMI: Sera-Brynn/MISI webinar: “How the DIB is Moving Towards CMMC” (June 17, 2020)

Today, Colin Glover of Sera-Brynn joined Armando Sey of the Maryland Innovation & Security Institute (MISI) for a presentation and Q&A session centered on the current state of the defense industrial base’s implementation of NIST-based cybersecurity standards. Highlighted was Sera-Brynn’s report, “Reality Check: Defense Industry’s Implementation of NIST SP 800-171. Keen insights from certified cybersecurity… Read more »

The Higher Ed Model for Cybersecurity Compliance

There are fundamental challenges to fully implementing the NIST 800-171 cybersecurity framework. However, a new study shows that higher education institutions overcome these challenges and place among the top tier of organizations for compliance. Organizations that handle sensitive government information and data face a foreign intelligence threat that is unprecedented in history. Despite this, most… Read more »

Press Release: Report on Defense Industry Implementation of NIST 800-171 Security Controls

Sera-Brynn releases “Reality Check: Defense Industry Implementation of NIST SP 800-171” – a get-real analysis of its cybersecurity assessments in the defense industry.  The report provides the insights, charts, graphs, and statistics that tell the story of an industry struggling with compliance.  FOR IMMEDIATE RELEASE:  May 15, 2019, SUFFOLK, VA.  Today, the certified cybersecurity assessment… Read more »

Live Webinar: Impacts of New NIST 800-171 (Revision 2) on Government Contractors

Heather Engel, Chief Strategy Officer of Sera-Brynn, will join Scott Edwards, Summit 7 Systems President, to discuss the highly-anticipated revision to NIST SP 800-171. NIST 800-171, Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations, was first published in December 2016 (and updated in June 2018).  Under Defense Federal Acquisition Regulation Supplement (DFARS), all U.S…. Read more »

Privacy Framework: NIST is in the House.

This month, NIST kicked off a series of public meetings to highlight its efforts to create a voluntary Privacy Framework. Much in the same way it developed the Cybersecurity Framework, NIST is trying to achieve a technology-privacy balance within the guidance by crowdsourcing its way there.  By bringing in views from federal agencies, small businesses,… Read more »