Blogs
Understanding the evolution of DoD’s FedRAMP Moderate Equivalency Requirements for CSPs
By Les Buday, Managing Director FedRAMP Moderate Equivalency is Born In October of 2016, the Department of Defense (DoD) issued Defense Federal Acquisition Regulation Supplement (DFARS) clause 252.204-7012 which, in [...]
White Hat Gala
SecureIT is excited to announce the 2023 White Hat Gala, a signature fundraiser event hosted by the cybersecurity community in support of Children's National Hospital. Business leaders, local partners, and [...]
Team IMPACT
SecureIT CEO David Trout serves on the Greater Washington DC Board for Team IMPACT. The mission of Team IMPACT, a nonprofit organization that matches children facing serious illness and disability [...]
Pink & Pure Golf Tournament
SecureIT is thrilled to announce our sponsorship of the Pink & Pure charity golf tournament, which will take place on May 18, 2023 at The Golf Club at Lansdowne. The [...]
Putt for Ponies Golf Tournament
SecureIT is excited to announce its sponsorship of Putt for Ponies, a charity golf tournament organized by Loudoun Therapeutic Riding (LTR) and Lansdowne Resort. The event will take place on [...]
Student Visionaries of the Year Northern Virginia Supporting Leukemia & Lymphoma Society
The Student Visionaries of the Year Northern Virginia program recognizes exceptional high school students who are making a positive impact in their community through volunteerism and philanthropy. SecureIT is proud [...]
Evlos Charity Poker Tournament
SecureIT is proud to have sponsored the Second Annual Charity Poker Tournament hosted by Evlos Technology, which took place on Friday, February 3, 2023, at the MD Live! Casino and [...]
Multifactor Requirements for CMMC
By Greg Kent, Senior Vice President, CTO CMMC requirements for multifactor authentication (MFA) seems to stump many SMBs. CMMC control IA.L2-3.5.3 requires Federal contractors to "Use multifactor authentication for local [...]
Clarifying Cloudy Responsibilities for CMMC Success
By Connor Payne With CMMC generally consisting of a “follow the data” exercise, DoD contractors often underestimate their reliance on third-party vendors to store, protect, process, or transmit CUI data. [...]
Shared Responsibilities: You’re Not (Totally) Off the Hook
By Connor Payne Inherited controls from a cloud service provider such as Amazon Web Services (AWS) or Microsoft Azure include physical and environmental controls that a customer fully inherits from [...]
The FIPS 199 Categorization of Cloud System for FedRAMP
By Greg Kent, Senior Vice President, CTO FedRAMP has control baselines for low, moderate, and high impact systems. The appropriate baseline, and therefore the particular control requirements that apply, depend [...]
CMMC, Take 2.0 – 3 Strategic Tips for Success
By Les Buday, Managing Director “Streamlined. Flexible. Secure.” This is the tagline listed on the CMMC website managed by the Office of the Under Secretary of Defense (OUSD) Acquisition & Sustainment (A&S). [...]
Follow the CUI for CMMC Compliance
By Greg Kent “Follow the CUI.” That is the standard practice that DoD contractors follow to determine exactly what system components and networks are within the scope boundary for Level [...]
Enterprise Security for the Remote Workplace – 3 Remote Access Settings Worth Reviewing
By Tobias McCurry Although remote access into corporate networks isn’t new, such widespread, continuous use of remote access is. Organizations very early on identified capacity issues, but some legacy security [...]
VDI for CUI
By Josh Griswell One approach that contractors can take in approaching CMMC is including all of their infrastructure within the scope boundary for a CMMC certification. This means that all [...]
Enhancing Laptop Security for the Remote Workplace
By Greg Kent Many organizations leverage control points specifically architected into their on-premise infrastructure to enforce security policies. When employees work from home, their computers may not access the corporate [...]
Sharpen Your Pencils for CMMC
By Greg Kent Fall will be here before you know it, so now is a good time for DoD contractors to review their business development and contract strategy for the [...]
CMMC Solutions for Defense Contractors
Compliance with the Cybersecurity Maturity Model Certification (CMMC) program requires DoD contractors to undergo cybersecurity audit and certification, beginning in 2020/2021. Based on NIST 800-171 controls, the CMMC will be a [...]
Is LI-SaaS your 2020 Fast Track to FedRAMP Success
By Jamie Graf CSPs providing Low-Impact Software-as-a-Service (LI-SaaS) products can take advantage of a FedRAMP Tailored authorization for a streamlined approach to compliance. The FedRAMP Tailored authorization is for low-risk [...]
LI-SaaS: A Simpler Path to Gov Cloud Services Adoption
By David Trout In a recent report published by the GAO, it was found that “from June 2017 to July 2019, the number of authorizations granted through FedRAMP by the 24 agencies [...]