The DoD weighed in yesterday with a promise of additional changes, and soon, to the Cybersecurity Maturity Model Certification (CMMC) program. We are told these changes will reflect industry feedback plus “internal government activities”. It appears they are a result of ongoing and wide-ranging reviews of the CMMC program that started this past spring. All aspects […]

As the provider of a compliant storage and collaboration platform for ITAR technical data and other forms of federal Controlled Unclassified Information, we often look on with amazement when some companies claim compliance with ITAR, NIST SP(s)800-171/172, and the CMMC for products and services that clearly don’t meet those standards. We assume that those companies […]

This weekend, we did a little ‘housekeeping’ and went through an old machine. We took a look at the Google Chrome browser and pulled up all the plugins. What to our surprise did we see on a VPN plug-in: A red triangle with an exclamation point and the words, “This extension contains malware.” (Yes, the […]

A nightmare is usually defined as,” a frightening or unpleasant dream”, and while we tell children that there are no such things as ghosts or bogeymen, there are real cyber nightmares that have happened and could happen. Some of the most significant events in recent years that have caused many people to cower in fear […]

While traditionally people have learned things through reading, many people prefer to learn about things by watching videos. Regardless of the method you prefer, there are many resources available for educating yourself on the Cyber Maturity Model Certification (CMMC). The following list of videos is for educating people on the history of the CMMC, each […]

“If you think compliance is expensive, try non-compliance.” former U.S. Deputy Attorney General Paul McNulty – June 2009Paul McNulty really did say it best. Many organizations feel that the cost of compliance is too great a burden to undertake and run the risk of a catastrophic event. Taking out the ethical and moral issues, there […]

Imagine if you will, you have moved into a new house. It’s a nice house, and it has some nice things in it. Your things – along with windows and doors and locks. Now imagine you open your front door. What do you see? Is it safe? Is it a good neighborhood? Are those people […]

In Part 1 and Part 2 of this three-part series, we reviewed why companies that handle federally-defined Controlled Unclassified Information (CUI) must comply with several sets of regulations and how RegDOX’s solution can enable that compliance. So how do you move forward to full implementation of ITAR/DFARS (i.e., CUI) compliance? Question 3: How can RegDOX […]

In Part 1 of this three-part series, we reviewed the primary federal regulations covering Controlled Unclassified Information (CUI). Today, we’re discussing how companies can achieve compliance with one-stop shopping with the RegDOX Data Room System. Question 2: How does the RegDOX Data Room System enable compliance? RegDOX’s secure document and file collaboration solution provide the […]

When considering RegDOX’s patented cloud solution for ITAR and DFARS compliant handling of federally defined Controlled Unclassified Information (CUI), many companies come to us with a series of questions that can be summarized in three general categories: What are the regulations that cover CUI? Can you give us a brief review of how the RegDOX […]