Logs are an essential component of a cyber security program. Logs help to identify malicious activity and they are critical to performing forensic analysis. Understanding logs and their essential roles should be one of the major factors to consider when deciding whether to manage your cyber security program internally, utilize a third-party or use a blended model.
Until CMMC v2.0 is formally rolled-out, and DFARS 252.204-7021 is included in solicitations and contract awards, companies in the Defense Industrial Base (DIB) must adhere to DFARS 252.204-7020 NIST SP 800-171 DOD ASSESSMENT REQUIREMENTS (NOV 2020) to be eligible for contract award as either a Prime or a subcontractor.
Don’t be misled by the term “self-assessment.” The DoD Basic self-assessment is neither a stand-alone document, nor is it the starting point for DoD cyber security compliance. It is most definitely not a requirement to be taken lightly or casually. Rather, completing this document requires knowledge of the company’s cyber security status and also a sound understanding of DoD’s policies, requirements and expectations. When completed the summary score should characterize the company’s cyber security activities that are in-place and planned.
Why you should attend –
Attendees will gain information and insight into this DFARS requirement and DoD cyber security requirements. They will be better equipped to determine whether they can undertake completing the assessment in-house or if they should outsource all or specific aspects of the assessment. For companies considering outsourcing this requirement, this webinar series will help to prepare attendees to develop pertinent scopes of work and evaluate third-party responses. Additionally, companies that have completed an assessment will be better able to review and evaluate their scoring methodology and overall cyber security program.
Speaker: Marc Violante, Wisconsin Procurement Institute
This webinar is eligible for 1 CPE credit.
View a schedule of all upcoming Cyber Friday webinars.