TIMESTAMPS
Why it's Important 0:09
How it is Impactful 0:10
How to Comply 0:26
SUMMARY
With the new California Consumer Privacy Act coming into effect, companies are once again taking time to scrutinize their Information and Data Security plans, policies, and procedures. Do I have the right measures in place? Am I doing enough to protect my customers’ data? With the EU GDPR and now California’s CCPA, there’s certainly a growing trend around the regulation and protection of data, just as the risks and attacks become more significant.
Guidelines like the ones produced by the National Institute of Standards and Technology (NIST) – a government agency that develops technology, metrics, and standards – can help you understand and implement recommended security controls for information systems. In particular, there is the NIST Cybersecurity Framework which is specifically designed to help organizations better understand and improve their management of cybersecurity risk.
Version 1.0 of the CMMC is now available and unlike NIST SP 800-171, CMMC will implement multiple levels of cybersecurity. In addition to assessing the maturity of a company’s implementation of cybersecurity controls, the CMMC will also assess the company’s maturity/institutionalization of cybersecurity practices and processes.
RESOURCES
NIST Cybersecurity Framework -
CMMC website -
Source Intelligence-
Please leave a comment if you have any questions!
Cheers,
Source Intelligence
0 Comments