Zofia Buzz

Jul
23
Defense Security Service To Verify 4th Pillar - Security

There will be a push from DoD for a “4th pillar” of evaluation for contract awards - in addition to cost, performance and schedule – “Security” will become a strong factor of evaluation. The goal is to reward companies that have established and effective security and risk management programs. https://www.zofiaconsulting.com/blog/post/defense-security-service-to-tackle-dod-cui-program #CUI #ISMS #RMF #DFARS #CDI #7012


Jul
18
NY CREDIT REPORTING AGENCIES (CRA) MUST COMPLY WITH NEW #CYBER MANDATE

By November 1, covered CRAs must have a CHIEF INFORMATION SECURITY OFFICER (#CISO) & a written CYBERSECURITY PROGRAM designed to safeguard the confidentiality, integrity and availability of organization’s info systems. https://www.zofiaconsulting.com/blog/post/new-yorks-credit-reporting-agencies-cra-must-comply-with-new-cyber-mandate


Jul
11
Defense Security Service To Verify that "4th Pillar" of Defense Contracts #CUI

There will be a push from DoD for a “4th pillar” of evaluation for contract awards - in addition to cost, performance and schedule – “Security” will become a strong factor of evaluation. The goal is to reward companies that have established and effective security and risk management programs. https://www.zofiaconsulting.com/blog/post/defense-security-service-to-tackle-dod-cui-program #CUI #ISMS #RMF #DFARS #CDI #7012


Jul
10
NY CREDIT REPORTING AGENCIES (CRA) MUST COMPLY WITH NEW #CYBER MANDATE

By November 1, covered CRAs must have a CHIEF INFORMATION SECURITY OFFICER (#CISO) & a written CYBERSECURITY PROGRAM designed to safeguard the confidentiality, integrity and availability of organization’s info systems. https://www.zofiaconsulting.com/blog/post/new-yorks-credit-reporting-agencies-cra-must-comply-with-new-cyber-mandate