Frameworks

AI Order

Federal AI Policy Update: Executive Orders Reshape Government AI Approach

April 8, 2025
The White House Office of Management and Budget (OMB) has issued significant policy changes to accelerate federal adoption of artificial intelligence, delivering on President Trump's Executive Order to remove barriers to American leadership in AI. Released in April 2025, these new policies were developed in...
FTC Safeguards Rule

FTC Safeguards Rule: What MSPs Need to Know

March 15, 2023
Have you been hearing channel chatter about the FTC Safeguards Rule? That’s because MSPs are learning that this regulation could have a big impact on their business. In this article, we’ll answer a couple of important questions that MSPs have been asking us: Do my...
The 6 new privacy laws coming in 2023

6 New Privacy Laws Introduced in 2023

December 5, 2022
Introduction It's important to be aware of privacy laws that are coming into effect in the next few years. The California Privacy Rights Act (CPRA), Virginia Consumer Data Protection Act (CDPA), Colorado Privacy Act (HB21-1231), Utah Consumer Privacy Act (SB220) and Quebec Bill 64 all...
FTC

What MSPs need to know about the FTC’s Proposed Changes to Car, Boat, Motorcycle and RV Sales Practices

October 26, 2022
On June 23, 2022, the FTC proposed the Motor Vehicle Dealers Trade Regulation Rule, which seeks to "protect consumers and honest dealers by making the car-buying process more clear and competitive." Introduction In the wake of the recent data breaches at Facebook and other large...
Is CMMC Dead?

Is CMMC Dead? Why should I care?

November 19, 2021
The rumblings of CMMC over this past month Department of Defense published the “Cybersecurity Maturity Model Certification (CMMC) 2.0 Updates and Way Forward” document and outlines the CMMC background and way forward based on the Department’s internal review. These changes include: Narrowing of levels down...
Microsoft Compliance Offerings

Microsoft Compliance Offerings

January 18, 2021
Microsoft products play a major role within any compliance need. Below is a list of all the Microsoft Compliance Offerings for Microsoft 365, Azure, and other Microsoft services. Global CIS Benchmark ISO 20000-1:2011 ISO 22301 ISO 27001 ISO 27017 ISO 27018 SOC WCAG US Government...
5 Levels of CMMC

The CMMC Interim Rule and NIST (SP) 800-171 Implementation

January 15, 2021
Why an “Interim Rule” for CMMC Since 2018, most defense contracts have been subject to DFARS clause 252.204–7012: Safeguarding Covered Defense Information and Cyber Incident Reporting. This clause requires contractors to apply the 110 security requirements detailed in the National Institute of Standards and Technology’s...
CUI

What is Controlled Unclassified Information (CUI)?

January 14, 2021
January 14, 2021 | What is Controlled Unclassified Information (CUI)? CUI is information the Government creates or possesses, or that an entity creates or possesses for or on behalf of the Government, that a law, regulation, or Government-wide policy requires or permits an agency to...
CMMC

Cybersecurity Maturity Model Certification (CMMC) Framework Overview

January 14, 2021
Whats the CMMC? The CMMC, or Cybersecurity Maturity Model Certification, was created by the Office of the Under Secretary of Defense for Acquisition and Sustainment (OUSD(A&S)) to enhance the cybersecurity of contractors and sub-contractors in the supply chain. Who does it apply to? All contractors and subcontractors...