by Nicholas Graning | Feb 17, 2026 | CMMC
When handling Controlled Unclassified Information (CUI), compliance with NIST SP 800-171 and the CMMC framework mandates strict data protection measures—including the use of FIPS-validated encryption in specific scenarios. But one requirement that consistently...
by Nicholas Graning | Dec 3, 2025 | CMMC
Proper storage of Controlled Unclassified Information (CUI) and Federal Contract Information (FCI) is at the core of a healthy and satisfactory compliance program. The issue? There seems to be ample confusion on what CUI and FCI are, the difference between the two,...
by Connor Payne | Jun 24, 2025 | CMMC
As a security compliance professional, your daily work leads to one goal: passing a C3PAO assessment and maintaining a CMMC-compliant status. This of course is much easier said than done. So, throughout this process, it’s difficult to account for every nuance in...
by Bob Stephens | May 30, 2025 | CMMC
Creating a Data Flow Diagram (DFD) is a foundational step in achieving Cybersecurity Maturity Model Certification (CMMC) compliance. DFDs offer a visual representation of how Controlled Unclassified Information (CUI) traverses through an organization’s systems. ...
by ASCERA | Feb 4, 2025 | CMMC
The Cybersecurity Maturity Model Certification (CMMC) process has become a critical component for organizations working with the Department of Defense (DoD). As we approach 2025, many Certified Third-Party Assessment Organizations (C3PAOs) are gearing up for upcoming...
by ASCERA | Jul 3, 2024 | CMMC
As the CMMC Final Ruling and Implementation progresses, many organizations are left wondering what to expect in the coming months, and 2025. Recently, it was confirmed that the CMMC Final Rule is near completion and was submitted for final review. In the waiting...
