Blog

Posted by CMMC Guest Contributors on May 31st 2022

Understanding The CMMC Risk Management Ecosystem

When it comes to recent CMMC discussions, it feels as though the trees are being missed due to the forest being in the way. Specifically, quite a few discussions on "necessary evidence" needed to sati …

read more

Posted by CMMC Guest Contributors on Feb 9th 2022

CMMC Control Ownership Documentation (RACI/RASCI)

This article covers the concept of building a RACI/RASCI matrix to demystify control ownership concerns, as well as reviewing any Customer Responsibility Matrix (CRM) that vendors may share with you.W …

read more

Posted by CMMC Guest Contributors on Jan 22nd 2022

Is Your MSP / MSSP A Dumpster Fire?

What is the soft underbelly of your CMMC program?For a lot of companies, it is not what they think it is and the reason is primarily based on misplaced assumptions. Too many people and companies view …

read more

Posted by CMMC Guest Contributors on Sep 2nd 2021

The most terrifying words in CMMC

This article looks at the most terrifying words in CMMC: "I’m from a RPO and I'm here to help!" This article focuses on a growing concern about Organizations Seeking Certification (OSC) being fleeced …

read more

Posted by CMMC Guest Contributors on Aug 28th 2021

Is control scoping the same as control applicability?

This is an often-argued topic within CMMC discussions, so pour a cup of coffee and enjoy! Spoiler: Scoping does not mean all controls apply everywhere!One of the biggest misconceptions with scoping is …

read more

Posted by CMMC Guest Contributors on Apr 29th 2021

Is your RP/RPO a “good idea fairy” or a project manager?

This article delves into the benefits and drawbacks associated with hiring a Registered Practitioner (RP) / Registered Provider Organization (RPO), as well as questions that you can ask to interview a …

read more

Newsletter Signup