Blog

Posted by GRC COA on Aug 8th 2025

Assurance is the logical outcome of Governance, Risk & Compliance (GRC) practices

What is the point of a company spending significant money and effort on Governance, Risk & Compliance (GRC) activities? It is to provide stakeholders with ASSURANCE that the organization has secur …

read more

Posted by Guest Contributor - Scott Alldridge (CEO, IP Services) on Aug 7th 2025

A Mission-Critical Need for AI Governance in the Era of GenAI

Guest Author: Scott Alldridge (CEO, IP Services) For the first time in history, China has come very close to matching the US despite being years behind in AI, where this new arms race is not just for …

read more

Posted by CMMC COA on Oct 22nd 2024

DoD FAQs - 32 CFR CMMC Program Rule

The DoD released an updated Frequently Asked Questions (FAQ) document to address the 32 CFR CMMC Program Rule. This is content that everyone should be familiar with to help avoid assumptions.You can d …

read more

Posted by CMMC COA on Oct 17th 2024

CMMC 2.0 Scoping Decision Tree

This is a decision tree for CMMC 2.0 asset scoping. Thanks to the many volunteers who helped refine this updated scoping tree that is based on the recent CMMC L2 scoping guide and 32 CFR Part 170! Thi …

read more

Posted by CMMC Guest Contributors on Apr 29th 2024

Goldilocks & The Three C3PAOs

Disclaimer: No C3PAOs were harmed in the making of this fairytale. However, Goldilocks did pick up a day drinking habit that led to several unintelligible LinkedIn postings and other questionable deci …

read more

Posted by The Net Effect on Feb 15th 2024

Attacking The Low Hanging Fruit

Note: This is a guest article by The Net Effect (TNE). TNE specializes in helping organizations develop information security and compliance programsin security awareness training. When someone is firs …

read more

Newsletter Signup