Education and Awareness
Clarity of thought, built over 100 years of international experience
Starting from the 1st of November 2020 contractors will be required to have up to date NIST SP 800-171 assessment result posted in SPRS. From January 2021 the DoD will add CMMC certification requirements to new contracts. In both cases contractors and their subcontractors must have up to date assessment results posted in the DoDs Supplier Performance Risk System (SPRS) if they wish to be awarded new DoD Contracts.
Executive cyber education and awareness programs
The regulatory and legislative environment surrounding cyber security and cyber risk management is changing rapidly. With a range of regulations such as NYDFS, CCPA, HIPAA, GDPR and PCI-DSS having consequences internationally. The most striking regulatory change comes from the US DoD in the form of its Cyber Maturity Model Certification (CMMC) regulation. Which proposes to strengthen the already enforced DFARS 48 CFR § 252.204-7012 and it requirements to embed NIST 800 – 171 cyber security across the US DoDs Defence Industry Base. It is important for the board to understand cyber risk management and the threat cyber posses to their organisations. For boards to Set appropriate levels of risk appetite, assure the effectiveness of cyber practices and oversee the management of cyber risk. For listed and non listed companies, securing shareholder value and securing corporate IP, FCI, CUI and PII is critical to maintaining the security of an organisations financial statements.
The CMMC-APAC provides training and awareness on the CMMC to its partners to enable them to deliver cyber education and awareness programs to their customers on masse. CMMC-APAC is seeking to establish partnership with training specific organisations.