Compliance Standards Archives | Page 51 of 80

How to Use CMMC Compliance Tools

by RSI Security December 24, 2020July 1, 2021

Working with the United States Department of Defense (DoD) is a lucrative opportunity for any company, but it’s also a move that requires a serious overhaul of your cyberdefenses. Namely, you’ll need to become compliant with the Cybersecurity Maturity Model Certification (CMMC), a robust framework published by the Office of the Under Secretary of Defense for Acquisition and Sustainment (OUSD(A&S)). Luckily, there are CMMC compliance tools to make it easier.

December 24, 2020July 1, 2021 0 comment

CMMC

CMMC vs. NIST 800-171 Mapping

by RSI Security December 23, 2020July 1, 2021

written by RSI Security

There are many lucrative pathways available to companies who contract with the United States Department of Defense (DoD). However, robust cybersecurity is a prerequisite for winning coveted DoD contracts. Not sure what that takes, or what CMMC vs NIST 800-171 mapping and implementation means? This guide will walk through everything you need to know to get started.

December 23, 2020July 1, 2021 0 comment

CIS CSC

How to Map CIS Controls v7.1 to NIST CSF

by RSI Security December 22, 2020May 25, 2023

written by RSI Security

Earlier this year, the Center for Internet Security (CIS) realeased the newest edition of their Critical Security Controls, CIS Controls v7.1. For many institutions, the implementation of these new protocols requires adaptation to other frameworks and compliance obligations, like mapping onto the National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF).

December 22, 2020May 25, 2023 0 comment

NIST 800-171 / DFARS

NIST 800-171 Implementation Guide for Small-Medium Sized Businesses

by RSI Security December 22, 2020December 22, 2020

written by RSI Security

Any business owner who wants to work with the Department of Defense (DOD) has to ensure their organization is secured against cybercrime. While even large firms can have trouble keeping up with safety rules and regulations, it’s uniquely burdensome for smaller companies with modest IT budgets. That’s why we’ve put together this dedicated NIST CSF and NIST 800 171 implementation guide targeted specifically at small to medium businesses.

December 22, 2020December 22, 2020 0 comment

Factor analysis of information risk (FAIR) Assessment

How is Risk Exposure Calculated in FAIR?

by RSI Security December 21, 2020December 22, 2020

written by RSI Security

The quantification of risk has been rising in popularity in cybersecurity circles over the past couple years, as reported by the Wall Street Journal. However, WSJ’s report leaves out one of the most impactful measures for risk: Factor Analysis of Information Risk (FAIR) analysis, the only internationally recognized standard for quantifying risk. The FAIR Institute has developed a robust system of risk management based entirely on quantifications. So, how is the risk exposure calculated in FAIR?

December 21, 2020December 22, 2020 0 comment

Factor analysis of information risk (FAIR) Assessment

What Is a FAIR Lending Risk Assessment?

by RSI Security December 18, 2020December 22, 2020

written by RSI Security

Risk is a key consideration in every element of a financial institution’s business model. Actuarial scientists develop financial risk models that shape banks’ products and services, from savings accounts to loans. And then, of course, security risks shape the ways in which banks safeguard their physical and digital assets and resources. Finally, on a slightly less obvious front, FAIR lending risk assessments also play a vital role in ensuring a financial institution’s long-term health.

December 18, 2020December 22, 2020 0 comment

PIPEDA

Tools for Conducting a PIPEDA Self-Assessment

by RSI Security December 17, 2020January 6, 2025

written by RSI Security

With a flood of new, Canadian government-enforced compliance standards holding organizations accountable, Canada offered its contribution with a 2018 update to the Personal Information Protection and Electronic Documents Act. Since then, organizations doing business with Canadian consumers have taken advantage of various PIPEDA self-assessment tools.

December 17, 2020January 6, 2025 0 comment

CMMC

What is a CMMC Auditor and What Do They Do?

by RSI Security December 17, 2020July 1, 2021

written by RSI Security

If you have had any dealings with the DoD in the past few years, chances are you have heard of the new cybersecurity maturity model certification (CMMC). The DoD has made sweeping changes from the previous NIST self-certification framework and now requires DoD contractors to certify to the CMMC using a certified third-party authority (C3PAO), enter the CMMC auditor.

December 17, 2020July 1, 2021 0 comment

CMMC

Overview of CMMC Level 5 Requirements

by RSI Security December 16, 2020July 1, 2021

written by RSI Security

Welcome to the fifth and final installment of our series on the Cybersecurity Maturity Model Certification (CMMC), a framework required for companies contracting with the US Department of Defense (DoD). In this guide, we’ll break down everything you need to know about CMMC Level 5. For information about other levels of the CMMC, see our guides, levels 1, 2, 3, and 4.

December 16, 2020July 1, 2021 0 comment

CMMC

Overview of CMMC Level 4 Requirements

by RSI Security December 15, 2020July 1, 2021

written by RSI Security

Welcome to the fourth installment of our series on the Cybersecurity Maturity Model Certification (CMMC), a framework required for companies contracting with the US Department of Defense (DoD). In this guide, we’ll break down everything you need to know about CMMC Level 4. For information about other levels of the CMMC, see our guides, levels 1, 2, 3, and 5.

December 15, 2020July 1, 2021 0 comment