If you're interested in the latest industrial security trends and topics, then you'll want to hang out here a while.

The State of Federal Security: What Contractors Should Know During Cybersecurity Month

Oct 29, 2019

October is the scariest month of the year, but not because of Halloween. While the rest of the nation prepares for trick-or-treaters, during October the government observes National Cybersecurity Awareness Month (NCAM) to remind agencies of the scariest danger facing Americans today: cyber-threats. According to Federal CIO Grant Schneider, the U.S government has “come a long way” in cybersecurity…

Read More

How Portal Commander is Readying Organizations for the Future of Compliance

Jul 17, 2019

Staying NISPOM compliant has always been difficult – but when SEAD 3 went into effect in 2017, the standard for security became more than just compliance. Now, organizations must play an active role in monitoring themselves, their employees, colleagues, and associates. With Portal Commander, we can help. Modern Threats Despite popular belief, the modern FSO knows…

Read More

DSS Risk Assessment: Terminology Defined and Steps Explained

May 17, 2019

In accordance with Executive Order 12829, the Defense Security Service (DSS) administers and implements the defense portion of the National Industrial Security Program (NISP). To this end, it publishes the DSS Assessment and Authorization Process Manual (DAAPM) providing a comprehensive Risk Management Framework (RMF) for government agencies and their partners. In June of last year,…

Read More

NBIB to Merge with DoD – Will the Security Backlog Finally Disappear?

Apr 17, 2019

By October 1st of 2019, the Office of Personnel Management (OPM) will be dissolved with its various functions transferring to other U.S agencies, thanks to an executive order signed by the President in April. While some have found the move perplexing (“out of the blue” as one columnist put it), OPM employees and management have anticipated it since late…

Read More

How Automation Can Keep Cybersecurity Alive During a Shutdown

Mar 15, 2019

In many ways, the worst thing that can happen for cybersecurity in the public sector is an interruption of operations. During the 35 day shutdown of the U.S government which occurred between December 22, 2018 and January 25th of this year, massive furloughs left IT systems unmanaged throughout federal agencies. From FBI to DoD and even the Department of Homeland Security’s…

Read More

Seamless NISPOM Compliance with Access Commander and Deltek Products

Feb 25, 2019

The National Industrial Security Program Operating Manual (NISPOM) defines security standards that must be followed by U.S organizations (government and corporate) with access to classified information. Among other things, the NISPOM provides guidelines to: • Ensure proper clearance for access to classified information• Provide adequate security training/briefings to personnel• Regulate outgoing and incoming visits to…

Read More

Why Facility Breaches Happen, and How to Prevent Them

Feb 6, 2019

In July of 1982, a British man named Michael Fagan climbed a drainpipe in London, broke into Buckingham Palace, and triggered several alarms on the premises. Readers might imagine that he was quickly spotted and apprehended by the Queen’s Guard; that Scotland Yard was called onto the scene before quickly apprehending and arresting the intruder.…

Read More

The Future of FISMA and Security Standardization in the U.S.

Dec 3, 2018

As 2018 draws to a close, it’s a good time to reflect on cybersecurity compliance. This year has seen a rise in mobile threats, ransomware, data breaches, and increased focus on the energy sector, which has been the target of foreign attacks. Thankfully it’s not all bad news: as the pressing need to protect the nation’s infrastructure and consumer…

Read More

Enterprise Security Management in the Cloud

Nov 3, 2018

Background When Amazon Web Services was proposed in 2003 by Benjamin Black, it had already been a year since the U.S Government completed its effort to create and finalize the Federal Information Security Management Act (FISMA) – which defined IT security across public agencies and partners. This update to U.S. law had taken fifteen years to supplant the aging…

Read More