Maika'i Consulting Solutions

The DoD CIO is excited to announce the CMMC 32 CFR program rule was released for public inspection today and is expected to be published on Tuesday 15 Oct. This rule streamlines and simplifies the process for small- and medium-sized businesses by reducing the number of assessment levels from the five in the original program to three under the new program. Companies may use cloud service offerings to meet the cybersecurity requirements that must be assessed as part of the CMMC requirement. The DoD CIO would like to thank all the businesses and industry associations that provided input during the public comment period. Improving the cybersecurity of the defense industrial base (DIB) is essential to protecting the products of American ingenuity and the national security information that supports and enables our warfighters. Your input improved the rule and will help improve security of critical information while making it easier for small- and medium-sized businesses to meet their contractual obligations. Read more at: https://lnkd.in/eAgd9SdK #Cybersecurity #DIB #DIBCS #DC3”

Cybersecurity Awareness Month: Lessons Learned from the Defense Industrial Base The Defense Industrial Base (DIB) has faced multiple cybersecurity breaches due to inadequate compliance programs, resulting in significant operational and financial impacts. Here are some key events to consider: 2016: U.S. Navy Breach APT attackers targeted an unnamed U.S. Navy contractor, resulting in the compromise of sensitive military data, including submarine and missile plans. The incident highlighted a lack of stringent cybersecurity practices and controls within contractor environments, which can lead to severe national security risks. 2018: Shipbuilder Attack An international shipbuilder supporting U.S. Navy projects, experienced a ransomware attack that disrupted operations and led to the loss of commercially sensitive information. The breach revealed gaps in network security and vendor compliance that facilitated the attack. 2021: Microsoft Exchange Vulnerability Exploited International espionage group leveraged zero-day vulnerabilities in Microsoft Exchange to target companies within the DIB, impacting supply chains and exposing sensitive data. This incident underscored the importance of timely patch management and supply chain risk management. 2022: Large Prime Contractor Cyber Incident In a sophisticated cyber espionage campaign, adversaries accessed a large prime contractor's sensitive project information, including missile systems data. The breach resulted from vulnerabilities in third-party contractor systems, emphasizing the need for better compliance and third-party risk assessments. June 2024: CrowdStrike Outage CrowdStrike’s major outage affected its Falcon platform, causing disruptions for defense contractors relying on its endpoint security services. This incident revealed how reliance on a single cybersecurity vendor without contingency planning can impact operational resilience and security monitoring. These breaches and incidents serve as reminders that cybersecurity compliance is not just a checkbox exercise -- it’s essential for protecting sensitive data and maintaining operational stability. Don’t let non-compliance become your weakness! Partner with Maika'i Consulting Solutions to secure your operations and meet compliance requirements. Do you know of any other significant cybersecurity incidents that might have been prevented with a strong compliance program in place? We’d love to hear your thoughts—share your insights in the comments below! 👇🏽

We’re honored to be a founding sponsor for Honolulu Tech Week, a huge Mahalo to everyone involved! This Tech Week is an awesome chance for tech innovators to sit down, talk story, and build real partnerships with cybersecurity professionals - elevating each other! We can’t wait to see the connections and ideas that come out of this week. Let’s use this time to uplift our industries, share our Mana‘o (knowledge), and work together to build a stronger tech community! Mahalo for being part of this journey!

Hello DoD, Small Business Ecosystem! PLEASE PASS THE WORD! The Basic Cyber Hygiene for those who handle only Federal Contract Information is back! And we will teach this class every month – Why? -because there are 120K federal contractors who have this requirement! We will cover the FAR 52.204-21 which is in every federal contract! We’ll create a small business with four employees and lock it down! Small Businesses who only handle FCI will walk away from this class fully armed to implement basic cyber hygiene that day!  Register for Basic Cyber Hygiene/Proposed CMMC Level 1 at www.dau.edu/events  Find this event every month at www.dau.edu/events P.S. The source for this webinar, the FAR 52.-204-21, has been in every SBIR contract since 2013 is exactly the same at the proposed DoD CMMC Level 1!  https://lnkd.in/gPZTVTQ7

Is your organization preparing for #CMMC compliance? Are you seeking helpful resources for implementing NIST SP 800-171 requirements? #CyberAssist offers valuable insights and tools to guide organizations through the complexities of CMMC. Check out https://lnkd.in/duX2Bbp Plus, don't miss our complimentary NIST 800-171 pre-assessment questionnaire to kickstart your compliance journey. Visit https://lnkd.in/gh2VnzGA #CMMC #Cybersecurity #DIB #NIST800171 #maikaiconsultingsolutions

If you would like to get a measure of the true potential of NIST SP 800-171, there are some great tools available to map the security requirements to a well-established set of cyber-attacks by adversaries. And they're all free of charge. Here’s how it works.   The security requirements in SP 800-171 are sourced to the security controls and control enhancements in SP 800-53. The mapping from requirements to controls can be found in SP 800-171, Appendix C, Tailoring Criteria.   Next visit the MITRE Center for Threat-Informed Defense. https://lnkd.in/eRTswkcH   Access the MITRE mapping framework for NIST SP 800-53. https://lnkd.in/ei4Khxka   The framework “provides resources for assessing security control coverage against real-world threats as described in the MITRE ATT&CK® knowledge base and provides a foundation for integrating ATT&CK-based threat information into the risk management process.”   SP 800-171 provides a strong set of security requirements that can help organizations protect their sensitive information. More importantly, organizations can now demonstrate a tangible return on investment by linking security requirements to documented cyber threats and attacks. Revision 3. State of the practice. Right around the corner.   #NIST800171 #SecurityRequirements #ProtectCUI #Confidentiality #Integrity #NIST800171A #APT #AssessmentProcedures #Assurance #MITREATTACK

This latest revision outlines requirements for participation in the DOD's Defense Industrial Base Cybersecurity (DIB CS) Program. It includes provisions for reporting cyber incidents, utilizing third-party service providers, and sharing cyber threat indicators. Additionally, it highlights the importance of information confidentiality and compliance with the Freedom of Information Act. Small businesses considering participation should ensure they meet the program's requirements and understand their obligations regarding cybersecurity collaboration with the government. #cui #DefenseIndustrialBase #DIBCS #Cybersecurity #governmentregulations

We're incredibly proud of our collaboration with PacMar Technologies! Congratulations on this monumental success and the completion of phase II! Your dedication and hard work have truly paid off. Together, we ensured compliance with regulatory standards, setting a new benchmark for excellence in the industry. Looking forward to more impactful projects ahead. #Cybersecurity #Compliance #PartnershipSuccess #MaikaiConsultingSolutions

🔒 Unlocking Cybersecurity Excellence: Take Our NIST 800-171 Pre-Assessment Quiz! Greetings, LinkedIn community! At Maika'i Consulting Solutions we understand that navigating the world of cybersecurity compliance can be a challenge. 🛡️ Are you preparing for NIST 800-171 compliance or assessing your cybersecurity readiness? We're excited to introduce our NIST 800-171 Pre-Assessment Quiz! Quiz Highlights: 🌟 Our quiz is a quick tool crafted to assist you in evaluating your organization's current state of compliance. It covers key domains, ensuring a holistic assessment tailored to NIST 800-171 standards. Why Take the Quiz? 🤔 ✅ Gap Assessment: Pinpoint areas where your cybersecurity practices align with NIST 800-171 and identify potential gaps. ✅ Strategic Preparedness: Gain insights into the specific requirements and prepare strategically for compliance. ✅ Risk Mitigation: Proactively address vulnerabilities and enhance your cybersecurity posture. 🌐 The Path to Compliance Starts Here! Ready to take the quiz? Go to: https://lnkd.in/gh2VnzGA At Maika’i Consulting Solutions, we're committed to supporting you on your cybersecurity compliance journey. 🌐 Learn More: https://lnkd.in/gGj8g74V 📞 Contact Us: info@maikaiconsulting.com #Cybersecurity #NIST800171 #ComplianceJourney #CybersecurityReadiness #maikaiconsultingsolutions

🔒 Unlocking Cybersecurity Excellence: Take Our NIST 800-171 Pre-Assessment Quiz! Greetings, LinkedIn community! At Maika'i Consulting Solutions we understand that navigating the world of cybersecurity compliance can be a challenge. 🛡️ Are you preparing for NIST 800-171 compliance or assessing your cybersecurity readiness? We're excited to introduce our NIST 800-171 Pre-Assessment Quiz! Quiz Highlights: 🌟 Our quiz is a quick tool crafted to assist you in evaluating your organization's current state of compliance. It covers key domains, ensuring a holistic assessment tailored to NIST 800-171 standards. Why Take the Quiz? 🤔 ✅ Gap Assessment: Pinpoint areas where your cybersecurity practices align with NIST 800-171 and identify potential gaps. ✅ Strategic Preparedness: Gain insights into the specific requirements and prepare strategically for compliance. ✅ Risk Mitigation: Proactively address vulnerabilities and enhance your cybersecurity posture. 🌐 The Path to Compliance Starts Here! Ready to take the quiz? Go to: https://lnkd.in/gh2VnzGA At Maika’i Consulting Solutions, we're committed to supporting you on your cybersecurity compliance journey. 🌐 Learn More: https://lnkd.in/gGj8g74V 📞 Contact Us: info@maikaiconsulting.com #Cybersecurity #NIST800171 #ComplianceJourney #CybersecurityReadiness #maikaiconsultingsolutions