Frameworks

Is CMMC Compatible with FedRAMP Certification?

Continuum GRC 0 Comment
CMMC compliance featured

Any IT or cloud provider working with the government needs to show that they are secured against data breach or theft. As the SolarWinds hack has demonstrated, our interconnected technology systems are under attack from outside entities who want to gain access to critical civil, military, and industrial data and undermine our security. That’s why frameworks like FedRAMP and CMMC exist. 

But do these frameworks play well together? As of right now, there isn’t a clear 1-to-1 relationship between the two. But some similarities between the two could help cloud service providers who want to work with defense agencies prepare their systems for CMMC compliance if they currently have FedRAMP certification. 

Read More

Awareness Frameworks

How Does CMMC Compliance Impact Small and Mid-Sized Businesses?

Continuum GRC 0 Comment
CMMC security featured

The Department of Defense has made a significant push to improve the security of its cyberinfrastructure and supply chain (known as the Defense Industrial Base), and the result of this push is the Cybersecurity Maturity model Certification (CMMC) initiative. This framework uses existing security guidelines to provide an overview of necessary security requirements for federal contractors working with the DoD.

This framework isn’t just for large corporations. Many DoD agencies work with small and mid-sized businesses to leverage flexible cloud platforms, SaaS technology, or other IT services. That’s why it is just as important for SMBs to consider the impact of CMMC on their business now and over the next 5 years. 

Read More

Awareness

PCI DSS eCommerce: The Cybersecurity Landscape for Retailers in an Always-on Digital Market

Continuum GRC 0 Comment
PCI DSS ecommerce image featured

While online retail isn’t a new phenomenon, many retailers are still behind when it comes to proper security measures for this form of business. With fraud claims and chargebacks rising exponentially in 2021 due to quarantine and increased online customers, these security measures related to PCI DSS eCommerce are only becoming more necessary, not less. The landscape for retail cybersecurity is changing, and technology and business operations must continually change with it. 

Here, we’ll discuss some of the security surfaces that retailers face, and why compliance with frameworks like PCI DSS is so important. 

Read More