Cyber Insurance, NIST SP 800-171, and CMMC 2.0

แชร์
ฝัง
  • เผยแพร่เมื่อ 23 ธ.ค. 2024

ความคิดเห็น • 3

  • @Alex-xx3yc
    @Alex-xx3yc 2 ปีที่แล้ว +1

    Excellent presentation with real world advice. Been dealing with insurance x compliance for multiple companies and using similar approach. Starts at security w insurance and bridge the gap w compliance.

  • @brianstone5668
    @brianstone5668 3 หลายเดือนก่อน +1

    Skeptical at first being presented by a lawyer, turns out he found his calling. The Cyber Insurance section was a bit too deep of a theoretical dive for me. Overall: Well Done!

  • @apstech4618
    @apstech4618 2 ปีที่แล้ว +1

    Hogwash. To be perfectly clear: The DOD OWNS their own CUI. For them to then try and push both the responsibility and costs on storage and handling onto third parties (Primes and Subs), while expecting the "landlords" to eat the costs upon a promise of a potential contract later, is just not workable.
    Since the Federal Government is now obsessed with pronoun usage, If the Federal Government wants to carry out THEY’RE "Constitutionally Mandated obligations to secure OUR Nation", then THEY must understand that fact that THEY own the CUI, and THEY dictate the controls and storage of CUI, and therefore THEY will pay to have those controls and storage implemented for THEIR OWN CUI.
    None of the CMMC Regulation for Accountability makes any sense because the DOD is obviously trying to offload National Security back onto the people they are taxing and tasked with securing.
    The CMMC boondoggle IS the equivalent of telling companies to hire their own consultants to figure out ways to defend their airspace with homemade anti-aircraft missiles.
    National defense IS the sole province of the Federal Government. It cannot be shrugged-off back onto the people the government is supposed to be defending.