Hello, my name is Markus Smith, and I am the Information Security intern at Total Cyber Solutions (TCS). I primarily assist the Information Systems Security Officer (ISSO) by managing our systems’ security and ensuring we comply with NIST SP 800-171 and the Cybersecurity Maturity Model Certification (CMMC) v2. These frameworks aim to help businesses manage and reduce their cybersecurity risk while also protecting their networks and data. To accomplish this, I have begun rewriting the different policies and updating them, describing how TCS meets the control requirements. In addition to control writing, I also run weekly scans for devices on our network. These scans have multiple purposes and allow us to see unmanaged hosts, system vulnerabilities, services/ports, and host assets. With this information, we remediate the system’s vulnerabilities and ensure only authorized devices are on the network.
Dangers of Shadow IT
“Shadow IT” refers to IT (Information Technology) systems and solutions...
Read More