ClearanceJobs’ Post

Can I Have a DoD and IC Investigation at the Same Time?https://lnkd.in/gbiSWJsf Technically, yes; ideally, you really don't want that. You run the risk of having one of those investigations cancelled inadvertently by confused security personnel (investigators, SMOs, etc.). More facts are needed to find out where this person's clearance application is at the "3-letter" agency. Polygraph? Personally, I would contact the DOE security POC and inform them to obtain an already completed ROI from this "3-letter" agency, at least check for one. Otherwise, complete another SF86 for DOE, it will get run by DCSA and the ROI will be returned to DOE for adjudication by DOE, not the adjudicators at DCSA AVS. Much, much easier than putting your freaking life on hold waiting for a disposition, if you ever get one in the first place, from these "3-letter" agencies. 2 years and running?.....Pathetic and unacceptable.

🙋 CMMC Gap Analysis FAQs We've been helping many companies work through CMMC compliance and thought we'd share some of the common questions we get related to the gap analysis, and the answers to those. - What is a CMMC Gap Analysis? - How Much Does a CMMC Gap Analysis Cost? - Do We Have to Work With a Registered Provider Organization (RPO) or Registered Practitioner (RP)? - What's the Difference Between a CMMC Gap Analysis and a CMMC Audit? Cybercrime and theft of sensitive military data prompted the DOD to put in place the CMMC program. The best way for you as a contractor or subcontractor with the DOD to achieve your contract's CMMC compliance level is to do a CMMC gap analysis. We are a Registered Provider Organization with several Registered Practitioners on staff. We've helped countless businesses prepare for successful compliance. Contact us today for a CMMC gap analysis.

The US State Department is investigating yet another leak of government information allegedly caused by its third-party supplier. Help me understand, As someone who is not a US citizen and works in the defense industry in Israel, which is considered a sub-supplier of the US Ministry of Defense and is obligated to #CMMC, What will happen if (God forbid) we also have #CUI information leaked? I started searching and found, under #DFARS 252.204-7012, the following statement: (f) Access to additional information or equipment necessary for forensic analysis. Upon request by DoD, the Contractor shall provide DoD with access to additional information or equipment that is necessary to conduct a forensic analysis. My question is whether a company outside the US will indeed allow the DoD to access "additional information or equipment that is necessary to conduct a forensic analysis"? I mean, forget about little Israel for a moment, Will the British/Australians/Germans agree to expose all the information on their network to the DoD? Did the DoD even consider that there would be difficulties in this matter?

We see this so often……..#supplychain #riskonline #security #businessrisk

🚨 Critical Data Breach at UK's Ministry of Defence 🇬🇧 👇 Urgent details about the recent cyberattack on the UK MoD 👇 ⚠️ The payroll system of the Ministry of Defence (MoD) was targeted, compromising the personal information of both active and retired military personnel across the Royal Navy, Army, and Air Force. 🗂️ Personal HMRC-style information, including names, bank account details, and in some cases, home addresses, are at risk. 🦹♂️ The hacker(s) responsible for this breach remain unidentified, and the full potential uses of the compromised data are still unclear. 😱 An external contractor was in charge of the affected system, and no operational MoD data was involved in this incident. 🏛️ Government Response: Defence Secretary Grant Shapps is expected to make an official statement post a debate in the Commons, addressing the severity and implications of this breach. 🛡️ Protective Measures: Affected personnel are being notified and provided expert guidance to secure their information and monitor for misuse. 🌎 International Tensions: The breach has sparked concerns about international relations, especially with accusations against state-affiliated actors from China in recent British cybersecurity incidents. 🤔 How secure are our defenses? This breach not only exposes personal data but also raises major questions about the security measures protecting sensitive military information. Should more robust protocols be established? 📍 Aldohn Domingo, Reporter at Tech Times.

In early May, the Ministry of Defence experienced a severe cyber attack through third-party provider Shared Services Connected LTD, compromising the personal data of army personnel. At Barings Law, we understand the profound impact of this breach. We have now launched a claim for compensation in an effort to secure justice for the affected individuals. This breach has left many feeling let down and uncertain about their futures, especially those with high-security clearance positions who now fear the loss of their jobs and personal safety, particularly as home addresses were confirmed to be part of the exposed data. We have signed up now over 1,000 army personnel, although it is believed over a quarter-of-a-million have been impacted. We would like to thank publications such as The Independent, Evening Standard, and Yahoo News for highlighting the impact this breach has had, and for raising awareness about the work we are doing at Barings Law to help those who have been affected. For more information about the breach and the work Barings Law are doing, read here: https://lnkd.in/eiQw7ys6 #MinistryofDefence #DataBreach #CyberAttack #LawNews #TechNews

Your security personnel are your frontline defense. Are you confident about their background and integrity? Screening your guards thoroughly isn’t just a formality – it’s a necessity. Smart Workforce’s BS7858 Staff Vetting feature is built to eliminate these challenges. Our platform offers a seamless, automated vetting process that rigorously screens each candidate according to the BS7858 standard. From criminal record checks to financial history assessments, we handle the details so you can focus on protecting your assets. Take the first step towards building a compliant and dependable security force. Book a free demo today. https://lnkd.in/d5mPRCfk #SmartWorkforce #security #workforce #solution #workforcemanagement #Screening #BS7858 #UK #StaffVetting #backgroudcheck

The Defense Counterintelligence and Security Agency (DCSA) has a new roadmap to get the delayed National Background Investigation Services (NBIS) IT system back on track. DCSA Director David Cattler has outlined an 18-month plan to address the cost, delivery, and performance issues with the NBIS program. The plan includes modernizing and migrating NBIS applications, aligning acquisition and development actions, and improving program management practices. Cattler called the delays in NBIS "unacceptable" and noted that out of the $1.35 billion spent on the program so far, only about $800 million has gone toward new software development, with the rest going to sustaining legacy systems. The NBIS system is a key component of the White House's "Trusted Workforce 2.0" personnel vetting reform initiative. Addressing the delays and getting the program back on track is crucial for supporting the government's background investigation mission. #DCSA #NBIS #BackgroundInvestigation #ITModernization #GovernmentTechnology

With the increased use of and dependence on external system service providers by federal agencies, the protection of federal information such as Controlled Unclassified Information (CUI), is an important concern. NIST includes strong safeguards and countermeasures in SP 800-53 (SA-09) and SP 800-171 (03-16-03) to help protect federal information when nonfederal organizations are processing, storing, or transmitting such information. Check out the security controls and control enhancements that can be selected and implemented when using external system service providers. https://lnkd.in/eVRN9WnV #FISMA #OMBCircularA130 #NIST80053 #NIST800171 #ProtectCUI #SecurityControls #SecurityRequirements #SecurityAssessments #Assurance #FedRAMP #CloudServiceProviders #MSPs #MSSPs #CMMC #DIB