eNewsChannels NEWS: Aligned Technology Solutions (ATS), a top ranked managed IT services provider headquartered in the Washington DC Region, is pleased to announce the CMMC-AB, has approved it as an RPO. This achievement officially marks the entry of ATS into the CMMC ecosystem and is part of the firm's ongoing expansion of offerings to defense contractors and clients seeking assistance with CMMC. :: News from eNewsChannels
Anne Neuberger, Biden’s national cybersecurity advisor, will lead an investigation into SolarWinds. (NSA)
When Joe Biden assumes the presidency 13 days from now, as government grapples with fallout from the SolarWinds breach and a break-in at the U.S. Capitol, veteran intelligence expert Anne Neuberger likely will be by his side as deputy national security advisor for cybersecurity on the National Security Council (NSC).
Naming Neuberger to the newly created position on the NSC underscores the Biden administrationâs commitment to prioritize cybersecurity, at a time when âfederal cybersecurity leadership has never been more critical to the defense of the United States, as traditional warfare continues to shift to a digital theater,â said Yaniv Bar-Dayan, CEO and cofounder of Vulcan Cyber.
webinar for Department of Defense (DoD) Suppliers
Contractors in DoD supply chains are required to have adequate information security measures in place. For those handling Controlled Unclassified Information (CUI) which can include technical data and any information not in the public domain, these measures include the 110 controls of NIST SP 800-171. The DoD has issued an interim rule effective November 30, 2020 that requires reporting assessment results to this standard; and introduces a phased implementation of a new auditable requirement called Cybersecurity Maturity Model Certification (CMMC).
CMMC applies to all companies with defense contracts – even those not handling Controlled Unclassified Information (CUI).
National security is the defense industrial base’s responsibility too Les Buday December 30, 2020 The Cybersecurity Maturity Model Certification is so much more than a check-the-box compliance requirement in order to do business with the federal government.(Matej Moderc/Getty Images)
“Never let a good crisis go to waste.” – Winston Churchill On Dec. 7, the National Security Agency issued an advisory to the Department of Defense and its defense industrial base (DIB) stating that Russian state-sponsored groups have been actively attacking a number of remote-work platforms developed by VMWare in an attempt to gain privileged access to target data. The Cybersecurity and Infrastructure Security Agency has issued similar warnings about the need for government agencies and their supporting organizations to patch holes in various VPN solutions to keep unauthorized users off their networks.
National Defense Authorization Act
As we noted last month, House Armed Services Committee (“HASC”) and Senate Armed Services Committee (“SASC”) staff had been conferencing the National Defense Authorization Act (“NDAA”), Congress’ annual defense policy bill, since mid-August. On November 18, 2020, the Senate and House began formal conference committee proceedings to resolve and reconcile the remaining major sticking points of the House and Senate versions of the bill.
On December 8, 2020, the House passed the reconciled version of the bill, otherwise known as the conference report, by a vote of 335-78. The Senate followed suit on December 11, 2020, passing the bill by a vote of 84-13. The President vetoed the bill on December 23, 2020 as was widely expected. The President had long threatened to veto the bill if it did not include a repeal of Section 230 of the Communications Decency Act, which prevents social media websites from being held liable for users’ comm