FCI

Using NIST SP 800-171A to Perform Self-Assessments and Scoring under the New DFARS Cybersecurity Rule

You are probably well aware at this point that the Department of Defense has published new (interim) cybersecurity rules (effective November 30, 2020). Much of the press around this announcement has been about the Cybersecurity Maturity Model Certification (CMMC). However, it is unknown when and to whom CMMC will apply over the next five years…. Read more »

What’s New in CMMC Draft Version 0.6?

In November, the DoD released the newest draft of the  Cybersecurity Maturity Model Certification (CMMC), version 0.6.  CMMC Version 0.6 revised Levels 1-3.  Levels 4-5 are expected to be addressed in the next version. Key points on FCI and CUI Levels 1 and 2 are not intended for Controlled Unclassified Information (CUI). Instead, Levels 1… Read more »