NIST 800-171 - Posts - Page 1 - GRC Center of Awesomeness (GRC COA)

Posted by GRC COA on Aug 8th 2025

Texas SB 2610 - America's New Safe Harbor Law

Texas SB 2610 is a state law that goes into effect on September 1, 2025. This new law creates a legal “safe harbor” for certain Small and Medium Businesses (SMBs) in Texas, where …

read more

Posted by CMMC COA on Oct 22nd 2024

DoD FAQs - 32 CFR CMMC Program Rule

The DoD released an updated Frequently Asked Questions (FAQ) document to address the 32 CFR CMMC Program Rule. This is content that everyone should be familiar with to help avoid assumptions.You can d …

read more

Posted by CMMC Guest Contributors on Jan 22nd 2024

NIST 800-171 R3: What Is A SCRM Plan?

National Institute of Standards and Technology (NIST) publishes NIST 800-171 which is a set of guidelines designed to enhance the cybersecurity posture of organizations handling Controlled Unclassifie …

read more

Posted by CMMC Guest Contributors on May 31st 2022

Understanding The CMMC Risk Management Ecosystem

When it comes to recent CMMC discussions, it feels as though the trees are being missed due to the forest being in the way. Specifically, quite a few discussions on "necessary evidence" needed to sati …

read more

Posted by CMMC Guest Contributors on Feb 9th 2022

CMMC Control Ownership Documentation (RACI/RASCI)

This article covers the concept of building a RACI/RASCI matrix to demystify control ownership concerns, as well as reviewing any Customer Responsibility Matrix (CRM) that vendors may share with you.W …

read more

Posted by CMMC Guest Contributors on Jan 22nd 2022

Is Your MSP / MSSP A Dumpster Fire?

What is the soft underbelly of your CMMC program?For a lot of companies, it is not what they think it is and the reason is primarily based on misplaced assumptions. Too many people and companies view …

read more

Blog

Newsletter Signup