Matthew Titcombe

Here is an interesting question for everyone in the NIST SP 800-171/CMMC space. What year was "Controlled Unclassified Information (CUI)" first coined? We spend tons of time griping about how long rule-making is going but fail to understand the history…lnkd.in/eTjmYTb5

Is your organization struggling to identify CUI in your environment? Does your organization know the key tenets to identify CUI? If so, this As the CMMC Churns will help your organization. This video will explain the three main te…lnkd.in/ejCVsFV6 lnkd.in/eZvmJCXQ

Thanks @SingingTech!!! I love To-Do. Can you provide an update on when the thick clients will be able to connect to To Do? Also, any idea on when Bookings will come out for GCCH??? lnkd.in/ecwFFA7Z

Is your organization getting ready to undergo a formal Conformity Assessment for NIST SP 800-171? If so, you need to watch this video!!! With the uptick in non-voluntary and Joint Surveillance Voluntary Assessments (JSVA) done by…lnkd.in/evW7a9_K lnkd.in/eM9rpq6z

Jason, The interesting part is ODPs are already in NIST SP 800-171 rev 2. If you follow the verbs, especially in NIST SP 800-171A Assessment Objectives, you will find that the verbs define, identify, and specify correlate to new ODPs and the verb establi…lnkd.in/eA2kSSyP

Are you trying got understand the 3.13.7, “Split Tunneling” Security Requirement in NIST SP 800-171 Rev 2 (and draft Rev 3??   Like all of the requirements, there are nuances in the actual Security Requirement, “Prevent remote devi…lnkd.in/e_vDnK7j lnkd.in/e8Y6eyS3

DO NOT watch this if you are a Defense Industrial Base (DIB) Contractor. You have real work to do by implementing NIST SP 800-171 Revision 2. Here is what you need to do: 1. Ignore all of the CMMC Ecosystem Drama around the NIST…lnkd.in/e3KYdi4V lnkd.in/eVQUPvuH

DO NOT watch this if you are a Defense Industrial Base (DIB) Contractor. You have real work to do by implementing NIST SP 800-171 Revision 2. Here is what you need to do: 1. Ignore all of the CMMC Ecosystem Drama around the NIST S…lnkd.in/eFPa8xh6 lnkd.in/eCGZTHJM

For those of us in the NIST SP 800-171 ecosystem that are following the recently released NIST SP 800-171 Revision 3 Initial Public Draft... you should attend this. For the majority of OSCs out there, do the following: 1. Don't attend this 2. Focus on ge…lnkd.in/eib8c2fj

@David92389881, great catch. Definitely, something us CMMC/NIST SP 800-171/DFARS/... wonks should attend. I'll be there. For the average DIB business owner, at this stage not sure it is worth the time. Focus on getting into NIST SP 800-171 Rev 2 compl…lnkd.in/ebeKgdNH

Fernando, awesome summary! lnkd.in/eySgD_Rg

***************************************** *** Hazardous CMMC FUD Outlook *** ***************************************** The National Institute of Standards and Technologies (NIST) released NIST SP 800-171 Revision 3 DRAFT for public comment. The draft…lnkd.in/eAepWUvw

This will be great to hear @David92389881's perspective on this at CMMC Day! #cmmc  #cmmc2  #infosec  #informationsecurity  #compliance #cybersecurity #cui #fci #cmmcab #thecyberab #nist800171 #defenseindustry #defensecontractors #defensecontracting #grc…lnkd.in/eP-Y3HA5

If you are looking for a half-day crash course on Cybersecurity Maturity Model Certification (CMMC), this may be for you! I will be leading a 4-hour workshop on "CMMC: DoD’s 3rd Party Supply Chain Risk Management Program" at the Rocky Mountain Informatio…lnkd.in/eFUS8eAQ

This is a great place for #DIB suppliers and subcontractors to find potentially NIST SP 800-171 compliant partners. lnkd.in/ejGSK3UG

BREAKING NEWS from "As the CMMC Churns"... The Cyber-AB, with DoD's implicit blessing, is now allowing Authorized C3PAOs to conduct formal NIST SP 800-171 Assessments for organizations both inside and outside of the Defense Industr…lnkd.in/eyZfS_xZ lnkd.in/ea5andTk

Matt Gilbert, thanks for catching this and I concur this needs to incompass the supporting firms like ours. lnkd.in/gFEnmMEP

I expect more and more exclusions plus proof a business really is doing cybersecurity in order to get insurance lnkd.in/gXuSjZ3m

When your business prepares itself right for CMMC or a Joint Voluntary Surveillance Assessment (JVSA), you know the "Wuxi finger hold" and are ready for anything. SKA-DOOSH your NIST 800-171 prep! #cmmc  #cmmc2  #infosec  #informationsecurity  #complian…lnkd.in/eiucADpf

Has your business made the implementation of NIST SP 800-171 harder than it needs to be? Are your employees using one device for CUI work and another for normal work? If so, there is a good chance you have overengineered your env…lnkd.in/eNhTz436 lnkd.in/eTAvWRCS