Trustifier Announces DFARS Compliance Kit

By |February 24th, 2017|Compliance, DFARS, News, SMB|

Trustifier Announces DFARS Compliance Kit WASHINGTON DC, FEB 24, 2017 - Trustifier announced today the general release of an all-in-one hardware/software solution to the cyber-security compliance component of the Defense Federal Acquisitions Rules Supplement (DFARS). This DFARS Compliance Kit is a groundbreaking solution, taking a dramatically different approach to

Stricter DoD Compliance Regimens: a New Trend?

By |December 27th, 2016|Compliance, DFARS, SMB|

Better shape up fast, civilian!   The CC2 - NISPOM and DFARS compliance updates may lead one to perceive DoD as a bit of a bully, carrying a big stick, as discussed in the previous post. Consider what's probably driving these compliance updates. DoD has recognized a rapidly escalating threat environment and the urgent need to protect

Compliance Regimens! All Stick, and no Carrot!

By |December 19th, 2016|Compliance, DFARS, SMB|

As we know, compliance is said to drive security spending. This is certainly going to be the case for SMB defense contractors due to some updates to two DoD compliance regimens. The security controls and cyber incident reporting requirements required, become quite a bit stricter. There is no doubt these regimens are using the "stick" to

Compliance Remains a Key Driver of Cyber Security Budgets

By |November 27th, 2016|Compliance, DFARS, SMB|

New DoD Compliance Regimens Two major compliance regimens, DFARS and NISPOM, ratchet up this month, for all DoD contractors and sub-contractors. Many defense contractors are SMBs. These regulations break some new ground in terms of the level of cyber security investment and types and protection levels expected of contractors. Different compliance regimens, in particular

Phishing: Are you a Suckerphish if you fall for the bait?

By |June 22nd, 2016|Insider threat, KSE, SMB, TUX GUI|

A previous version of this was previously posted in October, 2014.   Previous posts on phishing, here, and here, discussed factors that might reduce the effectiveness of user  security awareness training to protect against phishing. We're not saying that awareness training can't help to some degree, possibly for tightly defined business procedures and processes with enforced

PHISHING: Doomed to be a Phool?

By |June 20th, 2016|Insider threat, KSE, SMB, TUX GUI|

Phishing attacks have become pervasive, sophisticated, insidious, and more complicated. Unfortunately, these increasingly dangerous attacks are targeting some supposedly hapless chumps collectively known as users (in the eyes of some IT and security folks).  I think that security awareness training has been the only game in town, for the most part. The most recent Verizon DBIR revealed

SMB-Friendly Cyber Security Post Index

By |June 14th, 2016|KSE, SMB, TUX GUI|

Index of SMB posts. Extra effort has been made to keep the following posts as free of technical jargon, as possible. Many Trustifier posts are written at a high general level, so you may wish to check some of the others out at your convenience.   Plight of the SMB Cyber Defender Series   SMBs may