Guest blog by Mike Semel, president of Semel Consulting A new federal law plans to reward HIPAA covered entities and business associates for implementing the National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF). The law provides ‘safe harbor’ from HIPAA data breach penalties and allows...

There are plenty of prospective clients out there that still take a break-fix approach to their IT. They avoid regular IT audits and assessments. They are slow to patch their software or update their systems. They don’t know how vulnerable their systems are until they...

In a previous blog, we dove into the details of the new Cybersecurity Maturity Model Certification’s (CMMC) Interim Rule. The Department of Defense (DoD) established this rule to protect Controlled Unclassified Information (CUI) in the department’s supply chain during CMMC’s five-year rollout phase. The rule dictates...

"In general, the greatest data security risk is posed to organizations by insiders…If they want to steal it or leak it, they can usually do so with far greater ease than outsiders.” ~ Joseph Steinberg, Cybersecurity Expert, Author, Entrepreneur Insider breaches account for 30 percent of all...

The Department of Defense (DoD) rolled out its new cybersecurity framework, the Cybersecurity Maturity Model Certification (CMMC), in June 2020 to augment the department’s data protection efforts throughout its supply chain. However, because CMMC will require five years to be fully implemented, the DoD instituted...