FISMA

CMMC Expert Tony Bai on the DFARS Interim Rule, Rollout Timelines, Certification, and More

CMMC-Expert

With questions surfacing around CMMC and the changing regulatory landscape, Tony Bai, Federal Practice Lead at A-LIGN, offers his expert advice on a variety of federal compliance topics to help you understand what frameworks your organization should care about, how you can prepare and what is on the horizon for federal compliance.

Read More

5 HITRUST Regulatory Factors to Consider for International and State-level Privacy Compliance

WS HITRUST Blog Series

There are more than 20 optional regulatory factors that an organization can consider as part of a HITRUST assessment. These are individual options, based on specific industry requirements, and can be quite tricky to parse.  

Read More

7 HITRUST Factors to Consider for Federal Compliance

WS_HITRUST-Blog-Series

Our discussion of HITRUST regulatory factors continues with a focus on federal compliance and their influence on HITRUST. Here are 7 HITRUST regulatory factors to consider for federal compliance, and our recommendations on how to address them. 

Read More

Mind the Gap: How to Change Auditors without Impacting Compliance

Mind the Gap: How to Change Auditors without Impacting Compliance

Increasingly, organizations are realizing that a strategic compliance program increases operational efficiencies by replacing ad hoc and transactional audits with a more thoughtful approach. And as organizations get more serious about strategic compliance, they realize consolidation is a key component.

Read More

Federal Compliance Definitions: A Glossary of Terms

Federal Compliance Definitions: A Glossary of Terms

The world of compliance is filled with acronyms and abbreviations for some of its more complicated regulation systems and organizations. There is perhaps no better example than the long list of acronyms associated with federal compliance laws.

Read More

Your Guide to FedRAMP, FISMA and NIST

FedRAMP, FISMA and NIST

The federal government processes large amounts of important data daily, which is why it is vital for government organizations to understand and undergo federal assessments such as FedRAMP, FISMA, NIST and NIST SP 800-171.

Read More

Protecting the Nation: How to Achieve Federal Compliance

International

Federal assessments like FedRAMP, FISMA and NIST 800-171 help mitigate the risk of data breaches to important federal government agencies and departments, making them mandatory assessments used for federal security standards.

Read More

Operational Readiness Review for Enhanced Direct Enrollment Pathway

Enhanced Direct Enrollment

In an effort to stabilize the health insurance market and provide additional ways for consumers to access coverage, the Center for Consumer Information and Insurance Oversight (CCIIO) and the Centers for Medicare and Medicaid (CMS), have launched a new streamlined and simplified enhanced direct enrollment (EDE) process.

Read More

DFARS NIST 800-171 Compliance Deadline Quickly Approaching

The deadline for nonfederal contractors and subcontractors to meet DFARS NIST-171 compliance to maintain government contracts is December 31, 2017. Starting January 1, 2018, organizations must demonstrate compliance to win new and/or uphold existing Department of Defense (DoD) contracts. Organizations with existing contracts who fail to be compliant by 2018 may face breach of contract […]

Read More

Are You Ready for the DOE Annual Audit? 6 Steps to Ensure Compliance

As the digital landscape evolves and transforms the way organizations run their operations, many experience unprecedented opportunities as well as new challenges. In recent years, universities and colleges have experienced a higher number of cyber-attacks and security breaches due to a lack of a proper security infrastructure to secure student information, including financial aid. For […]

Read More