NIST 800-171

Still Lagging on DFARS? The Navy Has A Memo For You

by Heather Engel, Sera-Brynn Chief Strategy Officer The Assistant Secretary of the Navy recently released a memo imposing additional requirements on select contracts. For the last three years, Defense contractors have been working (some more diligently than others) to comply with DFARS clause 252.204-7012 that requires implementation of NIST SP 800-171. I’ve written numerous articles… Read more »

Chief Strategist Speaks on Critical Compliance Issues at NYS Cyber Security Conference

On June 5, 2018 at 3:20 PM in Albany, NY, Sera-Brynn’s CSO will discuss critical cybersecurity compliance issues in the federal and defense contracting space — from strategic risk management to supply chain impacts.   Heather Engel, Chief Strategy Officer at Sera-Brynn, will present “Strategic Planning for Cyber Risk: Protecting Data and Meeting Regulatory Requirements… Read more »

Live Webinar NIST 800-171 Compliance Higher Education / Research Institutions

Thursday, May 10, 2018 2 – 3pm EST Register here Heather Engel, Sera-Brynn’s Chief Strategy Officer will discuss the challenges colleges and universities face as they attempt to secure their cyber infrastructure to comply with new federal regulations as a condition of receiving research grants. Sera-Brynn is a top 10 global cybersecurity compliance firm. “Most… Read more »

DoD releases a much-anticipated update to the FAR/DFARs FAQs.

What you need to know now By Heather Engel, Sera-Brynn Chief Strategy Officer DoD’s original FAQ was issued in January 2017, with answers to 59 questions on general application, security requirements, and cloud computing. The FAQ issued on April 2, 2018 nearly doubles that with answers to 109 questions on DFARS 252.204-7008 and 252.204-7012, FAR… Read more »

Sera-Brynn to present on NIST SP 800-171 Regulatory Requirements in Blacksburg, VA

Sera-Brynn’s Chief Strategy Officer, Heather Engel, will present a two-hour workshop on Strategic Planning for Cyber Risk: Protecting Data and Meeting Regulatory Requirements with NIST SP 800-171 on March 27, 2018 from 2:00pm to 4:00pm. Sponsored by the Virginia Tech Corporate Research Center, this session will discuss what these requirements may mean for your organization,… Read more »

State of DFARS Compliance 5 Months From 31 Dec 2017 Deadline

As of Q2 2017, 87% of all defense contracts contained DFARS clause 252.204-7012. As of July 2017, 93% of Navy contracts, 83% of Air Force contracts, and 72% of Army contracts had the clause, with a goal of 100%. Source: Defense Procurement and Acquisition Policy Based on non-attributable statistical data we have collected through our… Read more »

DFARS vs FAR and Other Acronyms for Government Contractors

If you are considering or in the midst of a Sera-Brynn cyber audit involving DFARS, the provision of cloud services, or incident reporting, you know there are many key terms. Here are some high-frequency acronyms including DFARS vs FAR and their meanings to help you on the road to compliance. CDI stands for covered defense… Read more »

What DoD contractors need to know when it comes to DFARS and cloud computing

A final rule that amends a section of the Defense Federal Acquisition Regulation Supplement (DFARS) was published by the Department of Defense on Oct. 21 and holds specific regulations for contractors providing cloud services or operating an IT system on behalf of DoD. The final rule is titled “Defense Federal Acquisition Regulation Supplement: Network Penetration… Read more »

DFARS 252.204-7012, NIST 800-171 and Continuous Monitoring

By Heather Engel, Sera-Brynn, Executive Vice President  This article is the fourth in a series One of Sun Tzu’s more famous quotes from his book, “The Art of War,” is this: “The supreme art of war is to subdue the enemy without fighting.” Although the cagey, ancient Chinese general could not comprehend a future of… Read more »