Orlee Berlove

Blog – PreVeil

In September 2020, DoD released its long-anticipated DFARS Interim Rule, which goes into effect November 30, 2020. The Interim Rule’s main objectives are to solidify that CMMC will be the new framework for DoD contracts and to instruct contractors that they must perform and report a self-assessment score based on ... Read More

PreVeil had a great webinar last week with our strategic partner Simple Helix. The webinar CMMC Compliance Doesn’t Have to be Scary, focused on helping Primes and subs understand how to develop a pragmatic approach to compliance. With so much anxiety currently around the topic of compliance, the webinar was ... Read More

In September 2020, PreVeil hosted its CMMC Virtual Summit featuring a keynote session with Katie Arrington, CISO at the Department of Defense (DoD) Office of Acquisition & Sustainment, and Karlton Johnson, CMMC-AB (CMMC Accreditation Body) board chair. One of the Summit’s breakout sessions focused on CMMC compliance for higher education ... Read More

An Interview with John Very of Pivot Point   As the rollout to CMMC comes closer, defense contractors are worried about how much compliance will cost their company. For some that have been keeping up with NIST 800-171 and DFARS 252.204.7012 requirements, compliance will be a manageable cost. For others, ... Read More

The CMMC- AB has made it clear that Managed Service Providers (MSPs) and Managed Service Security Providers (MSSPs) are required to CMMC certify if they handle their defense customers’ CUI. However, what does this mean for service providers going forward? Should all MSPs/MSSPs get certified at Level 3 or above? ... Read More

Large contractors in the defense industrial base (DIB) likely have security systems in place that are CMMC-compliant. Small to medium sized businesses, with more limited financial, human, and time resources, will find the transition a lot more challenging. Many are looking for the simplest solution and, for businesses currently using ... Read More

On any given week, our sales team speaks to numerous contractors in the defense industrial base (DIB). Many of them believe they are DFARS compliant based on Microsoft’s previous statements recommending O365 Commercial for this purpose. Unfortunately, this guidance is no longer valid. In 2019, Microsoft took the position that ... Read More

The CMMC’s goal is to strengthen the cybersecurity of defense contractors, especially for the numerous small and medium-sized organizations. Many companies however are wondering how they can get started on the path towards compliance. We recently spoke with Jonathan Hard of H2L Solutions on this very topic. Jonathan’s company focuses ... Read More

In spite of Covid-19’s shutdown of America’s workforce, CMMC is still on the fast track to rolling out. Soon, compliance will be a prerequisite for every prime and subcontractor. With the initial wave of CMMC audits starting by Fall of 2020, companies storing or transmitting CUI need to get ready ... Read More

Last week Sky News reported that hackers had stolen data from nuclear missile contractor Westech International’s computer network. Using MAZE ransomware, hackers encrypted Westech’s machines and pressured the company to pay up or see their materials published online. At present, it is clear that the hackers were able to access ... Read More