Blog

NIST 800-171 & CMMC Documentation Terminology

NIST 800-171 & CMMC Documentation Terminology

Aug 09, 2023

Complying with NIST SP 800-171 & CMMC can be hard enough without arguing over terminology. Terminology pertaining to cybersecurity documentation is often abused, so a simplified concept of the hierarc … read more
NIST SP 800-53 vs FedRAMP vs NIST SP 800-171

NIST SP 800-53 vs FedRAMP vs NIST SP 800-171

Jun 20, 2023

NIST SP 800-53 R5 vs FedRAMP R5 vs NIST SP 800-171 R2 vs NIST SP 800-171 R3 IPDWithin the Defense Industrial Base (DIB), there is considerable confusion about the concept of "FedRAMP equivalency" as i … read more
Strategy vs Operations vs Tactics

Strategy vs Operations vs Tactics

Jun 15, 2023

Strategy vs Operations vs TacticsThe purpose of this article is to help cybersecurity leaders up their game by gaining a baseline understanding of strategy vs operations vs tactics.All too often,  … read more
Statutory vs Regulatory vs Contractual

Statutory vs Regulatory vs Contractual

Jun 14, 2023

Statutory vs Regulatory vs Contractual: Cybersecurity & Privacy ComplianceCompliance terms are pretty badly abused, even by professionals within the cybersecurity and privacy industries. Words ha … read more