PreVeil’s Platform Supports Compliance with NIST, DFARS, CMMC Level 2, and Meets FedRAMP, FIPS and ITAR Standards
PreVeil is a state-of-the-art encrypted file sharing and email platform that offers uncompromised security for storing and sharing Controlled Unclassified Information (CUI). Organizations can easily add PreVeil to their existing IT environments (including Microsoft 365 Commercial), dramatically reducing the time and expense required to achieve compliance. PreVeil delivers a ... Read More
Making CMMC Compliance Affordable For SMBs
Realizing the Total Cost of Compliance Companies in the defense industrial base (DIB) have less than a year before the Interim Rule is in effect. We’ve spoken to many small to medium businesses (SMBs) in the DIB and one concern comes up over and over again. The cost of CMMC ... Read More
Nation-state Cyber Attackers aiming at the US Defense Industrial Base
Pres. Biden calls for strengthening cyber defenses with Zero Trust architecture President Biden’s recent statement on our nation’s cybersecurity highlighted intelligence indicating that “the Russian Government is exploring options for potential cyberattacks” on US targets. While this most recent threat is seen as potential retaliation for the economic sanctions the ... Read More
Countdown to Compliance: Expect CMMC by May 2023
The Department of Defense (DoD) is planning to release an Interim Rule on the CMMC framework by May 2023, according to Stacy Bostjanick, director of the CMMC (Cybersecurity Maturity Model Certification) program for the DoD. CMMC will be enacted on the day the Interim Rule is published, and CMMC requirements ... Read More
CMMC Level 2 (Advanced) Explained
Defense contractors handling CUI need to get ready for CMMC compliance. CMMC’s Stacy Bostjanick recently stated that the Pentagon will release its interim rule to implement CMMC in May 2023 and have requirements in contracts 60 days after the rule’s publication. And by July 2023, 80,000 defense contractors will be ... Read More
Why CMMC 2.0’s Approach to Compliance Works
The original CMMC framework put up high hurdles for defense contractors to clear. It introduced 20 new security controls on top of NIST 800-171 for companies that handle Controlled Unclassified Information (CUI). It also expected 100% compliance before any work could start on defense contracts. Under the original CMMC, Plans ... Read More
What Is a POAM?
If you’re a defense contractor seeking compliance with NIST 800-171, then you need to know how System Security Plans (SSPs) and Plans of Actions & Milestones (POAMs) will factor into your compliance journey. SSPs will document how your organization is meeting the 110 NIST controls while POAMs will describe your ... Read More
PreVeil helps SMB defense contractor achieve highest possible NIST SP 800-171 score in DIBCAC audit
Demonstrates CMMC Level 2 Compliance In a recent case study, an SMB defense contractor using PreVeil to store and share Controlled Unclassified Information (CUI) achieved a 110/110 on a NIST SP 800-171 audit. The SMB deployed PreVeil, a cloud-based, end-to-end encrypted file sharing and email system, as an overlay of ... Read More
How to Create a System Security Plan (SSP) for CMMC
If you’re a defense contractor and have a DFARS 7012 clause in your contract, then you are required to protect CUI and meet all 110 NIST 800-171 requirements. The only way to definitively meet controls is to have a System Security Plan (SSP) that spells out the policies and procedures ... Read More
The 3 Changes to CMMC 2.0 that Simplify Level 2 Compliance
With the release of CMMC 2.0 in late 2021, the DoD has streamlined its original 1.0 model. As a result, CMMC compliance will be simpler and more affordable. The goal of this blog is to highlight three important changes to the CMMC framework and explain what they mean for your ... Read More
