Search Results for: NIST

Still Lagging on DFARS? The Navy Has A Memo For You

by Heather Engel, Sera-Brynn Chief Strategy Officer The Assistant Secretary of the Navy recently released a memo imposing additional requirements on select contracts. For the last three years, Defense contractors have been working (some more diligently than others) to comply with DFARS clause 252.204-7012 that requires implementation of NIST SP 800-171. I’ve written numerous articles… Read more »

The Heavyweight Rules and Concepts You Need to Know About FedRAMP

The first rule of FedRAMP is … You do not talk about FedRAMP! (Sorry, that’s of course a quote from Fight Club, a movie about an insomniac office worker looking to shake things up with, well… fighting.) The real first rule about FedRAMP is that companies should attain the certification to show that their cloud… Read more »

What Cyber Framework Should My Organization Follow?

What are Security Frameworks? Security frameworks provide a calculated approach to determining risk, setting up a security strategy, and allocating security resources. They are (or should be) measurable, repeatable, and are often standardized by industry. With all the frameworks available…NIST, ISO, NERC CIP, PCI…which is right for your organization? Well the answer is…it depends. Where… Read more »

Why does your organization need a CISO?

By Crystal Silins, Senior Security Analyst Most companies today employ a Chief Information Officer (CIO) or Chief Technology Officer (CTO), an executive responsible for all things IT for the organization. The CIO or CTO typically reports directly to the CEO, and educates executive management and employees on the business value and risk that IT systems… Read more »

Digital Privacy and Apple Pie

By Colleen Johnson, Senior Cyber Legal Analyst, Sera-Brynn Thoughts on the American perspective on privacy, its revolutionary origins, and that Gosh Darn Privacy Regulation, GDPR. Supreme Court Justice Louis Brandeis is often credited with articulating the American perspective on the right to privacy. It was 1890. He called it “the right to be let alone.”… Read more »

What Cybersecurity is Really About in 2018

By Rob Hegedus, CEO, Sera-Brynn It’s not about the technology, it’s about insurability. With the implementation of GDPR, the inevitable FAR-wide adoption of NIST 800-171 standards (already mandatory for Department of Defense contractors), and the latest news on cybersecurity legislation from New York and South Carolina, the global business community as a whole is slowly but… Read more »

June 19, 2018 Webinar: Sera-Brynn & Pepper Hamilton Present “Reducing Scope for Compliance”

Sera-Brynn and Pepper Hamilton Cyber Café Series – Reducing Scope for Compliance Join us on Tuesday, June 19, 2018 at 8:45 AM (EST) for the latest Cyber Café hosted by Pepper Hamilton and Sera-Brynn. This month we are discussing Reducing Scope for Compliance. Click here to register. If your business has compliance mandates including DFARS… Read more »

Chief Strategist Speaks on Critical Compliance Issues at NYS Cyber Security Conference

On June 5, 2018 at 3:20 PM in Albany, NY, Sera-Brynn’s CSO will discuss critical cybersecurity compliance issues in the federal and defense contracting space — from strategic risk management to supply chain impacts.   Heather Engel, Chief Strategy Officer at Sera-Brynn, will present “Strategic Planning for Cyber Risk: Protecting Data and Meeting Regulatory Requirements… Read more »

Past Events

View upcoming events here. September 17, 2019 WEBINAR: Cybersecurity Costs Are Allowable, But Are They Recoverable? 8:30 – 9:15 AM (EDT) Join Sera-Brynn and Pepper Hamilton with special guest, Ryan Koenitzer of RKI Accounting, as they discuss about what “allowable costs” actually means, what makes a cost allowable, and recovery strategies and drawbacks.Register here! September… Read more »