Sherman & Howard L.L.C.’s Post

It outlines four goals aligned with that vision: 1. Strengthening DOD's governance structure for U.S. defense industrial base cybersecurity; 2. Enhancing the cybersecurity posture of the U.S. defense industrial base; 3. Preserving the resiliency of critical defense industrial base capabilities in a cyber-contested environment; and 4. Improving cybersecurity collaboration between DOD and the U.S. defense industrial base. https://lnkd.in/e27Cs83s

Automated Continuous Assessments are the only way forward if we want to keep pace. Point in time assessments can’t provide the necessary assurance and significantly delay mission access to leading tech. It’s the same issue in Commercial and Jeff Buss makes a great point.

Machine shops serving the military/defense industry that currently aren’t working toward achieving Cybersecurity Maturity Model Certification could be caught flat-footed once it’s required. In this article, Production Machining's Editor-in-Chief—Derek Korn—lists three articles that are beneficial resources for machine shops serving the military/defense industry: https://lnkd.in/gw9pivNq #manufacturing #cybersecurityawareness #cybersecurity

🌟 Unlocking CMMC Compliance: Your Guide to Cybersecurity Success! 🚀 Are you ready to navigate the intricate world of Cybersecurity Maturity Model Certification (CMMC)? 💻 As the Department of Defense rolls out this game-changing framework, over 300,000 companies in its supply chain are gearing up for compliance challenges like never before. 🛡️ From assessing systems against shifting CMMC requirements to implementing crucial cybersecurity controls, the journey to certification can seem daunting. But fear NOT! 🌟 Our latest blog post dives deep into the key focus areas and expert strategies you need to conquer the CMMC landscape: 🔍 Assessing Systems with Precision 🛠️ Implementing Cybersecurity Improvements 📋 Crafting Robust Plan of Action and Milestones (POAMs) 📘 Ensuring Compliance with Policies and Training 🔒 Preparing for Mock Audits and Assessments Discover how partnering with industry experts can streamline your path to CMMC success, aligning your security posture with regulatory demands and getting you audit-ready! 💼💪 Read More: 📚 #AuditReadiness #CMMCCompliance #Cybersecurity #DefenseContractors #ExpertStrategies #MADSecurity #SecurityPosture

In an era where cyber dangers reign, the Pentagon has just unveiled the final guidelines for DOD contractors! With the rollout of the new CMMC, it’s crucial for contractors to assess their cybersecurity skills. Are they equipped to navigate Controlled Unclassified Information flawlessly? 💃 For all the details, head over here: https://okt.to/W6VgtR

🔒 Safeguarding Your Supply Chain: Mastering Third-Party Cyber Risk 🌐 In the dynamic world of Defense Industrial Base (DIB), managing third-party cyber risk is a paramount challenge for CISOs. 🛡️ From suppliers to vendors, every link in the supply chain must be fortified against cyber threats. Key strategies include: 🔍 Cyber Questionnaires & Contract Security Expectations 🛡️ Vendor Risk Management Programs 🔒 Audits & Assessments of Third-Party Data Handlers 🔗 Modeling Risk Levels in Multi-Tier Supply Chains 💻 Data Security Guidelines for Contractors 🔐 Incorporating CMMC Standards Our latest blog post dives deep into these essential tactics, offering insights and solutions to empower CISOs in securing their extended attack surface. 💼💪 🔗 #CMMCCompliance #Cybersecurity #MADSecurity #SupplyChainSecurity #ThirdPartyRisk

Supply chain #security is crucial for protecting the integrity, confidentiality, and availability of data, systems, and operations. Swish’s MAD Security team breaks it down in this solution breif. Thanks for the post Jeremy Conway!

The blog post discusses a recent study that recommends the establishment of a dedicated cyber force within the U.S. military to address growing cybersecurity threats. The study is outlined in the fiscal 2025 defense bill, aiming to enhance the country's capabilities in responding to cyber attacks and ensuring national security. The proposed cyber force would focus on training and equipping personnel for cyber operations and strengthening the overall cyber defense posture. This initiative underscores the increasing importance of cybersecurity in modern warfare and the need for proactive measures to safeguard critical infrastructure and sensitive data. #CyberSecurity #CyberForce #NationalSecurity

Big News! The Moment We've Been Waiting For! 🚨   After much anticipation, the Department of Defense has finally moved forward with the publication of the new rule around the roll out of the Cybersecurity Maturity Model Certification (CMMC) 2.0! It is anticipated to be published on Thursday August 15th 2024.   This is a game-changer for the U.S. defense industrial base!   The new requirements will be phased in over the next three years, setting the standard for cybersecurity across all DoD contracts and the Defense Industrial Base Supply Chain.   One thing to note is from the time it is published (8/15/24) there is a 60 day public comment period which will end October 15th 2024.   If you're in the defense sector, this is the moment we've all been preparing for—ensuring that every contractor and supplier handling CUI meets the standards needed to protect our nation's information and ensuring our competitive advantage in the world.   The countdown to full compliance starts now. Get ready, because CMMC is here to stay!   #CMMC #DFARS #Cybersecurity

We live in an incredibly interconnected world. The COVID-19 pandemic really helped drive that home, both for us and our adversaries. We need to enhance our supply chain visibility, security, and resilience before our adversaries really take advantage of all of the vulnerabilities identified during COVID (and beyond). When you boil them down, a large percentage of the visibility, security, and resilience vulnerabilities are tied directly to every organization's cybersecurity posture. What are you doing to improve your own security and resilience, and how are you gaining visibility into what those in your supply chain are doing? Addressing these issues isn't easy. But, to their credit, the United States Department of Defense is blazing a trail for the rest of the government, and even civilian companies. There is a lot that we can learn from their efforts. And what’s really awesome is that they publish a lot of their work in the form of standards, white papers, etc. that are available at the unclassified level. They even travel to different conferences, trying to share their lessons learned. Thank you to folks like Lt. Gen. Skinner at the Defense Information Systems Agency who are helping to reshape the way our nation operates. You're doing the equivalent of changing the course of a fleet of aircraft carriers; progress will be slow and incremental. But don’t let that deter you. Your efforts aren't going unnoticed. #Cyber #Cybersecurity #Infosec #InformationSecurity #SupplyChain #SupplyChainSecurity #resilience #vulnerability #vulnerabilities #risk #riskmanagement #enterpriseriskmanagement #NIST #NIST800171 #CMMC #CMMC2