Featured
DoD Releases CMMC Version 1.0
The Department of Defense has finalized and released version 1.0 of the Cybersecurity Maturity Model Certification (CMMC) framework, making official the requirement for all Defense Industrial Base (DIB) contractors to…
Read More
The Latest from Ardalyst
Summary of Changes to CMMC with Release of v0.7
Draft 0.7 of the Cybersecurity Maturity Model Certification (CMMC) framework was released today by USD(A&S). Our initial takeaways regarding the changes from v0.6 to v0.7 are: There was no change…
More
How Adversary Simulation and Emulation Improve your Security Posture
It’s hard to measure risk without knowing the weaknesses in your system, people and processes. Understanding your vulnerabities and potential exposure from the adversary perspective is vital to successful defense…
More
CMMC FAQ
Are you a government contractor? Have you heard some rumblings about something called CMMC and wondered what the government has in store for future compliance? You’re not alone. We here…
More
Initial Thoughts on Draft CMMC Model v0.6
After a public review of Draft CMMC v0.4 (Cybersecurity Maturity Model Certification) framework and assessment of the feedback, the USD(A&S) (Office of the Under Secretary of Defense for Acquisition and…
More
The #1 Method You Can Implement Right Now to Vastly Improve Your Cybersecurity Defense
According to the 2019 CyberEdge Cyberthreat Defense Report, 91% of attacks against small- to medium-sized businesses start with some form of phishing or delivery of the attack vector via email….
More
Initial Thoughts on CMMC v0.4
The Department of Defense (DoD) Undersecretary for Acquisition and Sustainment is developing a unified cybersecurity standard for DoD acquisitions, the Cybersecurity Maturity Management Certification (CMMC). With the recent release of…
More
Ardalyst Executive Discussion and Table Top Exercise Facilitation Is A Cost-Effective Business Investment
Have you ever tried to engineer a seemingly complex business solution but had too many people working the problem, the wrong people working the problem, or people trying to use…
More
Why Does MITRE ATT&CK Matter?
Recently, Ardalyst had the opportunity to attend MITRE’s inaugural cyber security conference for industry, government, and academia to share best practices for MITRE ATT&CKcon. The event was held October 23-24…
More
Celedon Partners is Now Ardalyst!
Celedon Partners has become Ardalyst! The name change is reflective of a number of investments we have made in the company’s capabilities. Our mission is help organizations thrive in the digital world by…
More