Tag Archives: Falls Church

Tracking the Rollout of CMMC

Posted on by

The Cybersecurity Maturity Model Certification (CMMC) is a framework that requires companies contracting with the Department of Defense (DoD) to meet security standards based on the sensitivity of the data they manage. These standards, based on the National Institute of Standards and Technology's (NIST) SP 800-171 standard, have been in place for eight years, but CMMC further formalizes compliance.

As of November 10, 2025, Defense agencies now require at least a Level 1 certification to award any new contract. To meet this requirement, companies must self-certify that they comply with 15 controls--specified by 800-171--that cover basic cyber hygiene. Next November 10 (in 2026), DoD will require that Level 2 status for contracts dealing with Controlled Unclassified Information (CUI), which currently can be self-assessed, be verified through a third-party assessment of compliance with all 110 controls in the NIST standard. Then in 2027, contracting officers can start requiring those seeking Level 3 certification to undergo an assessment by the Defense Industrial Base Cybersecurity Assessment Center. A Level 3 requirement would apply to technology dealing with highly sensitive data or systems, where a breach could have far-reaching impact. Continue reading

Securing Our Healthcare Infrastructure

Posted on by

We don't typically think of healthcare as infrastructure, but the functioning of our healthcare facilities is just as essential as that of our roads and utilities. Because of this criticality, healthcare systems require 100% uptime, a necessity that is vulnerable to the reality of cyber threats.

According to the FBI's Internet Crime Report, the healthcare industry reported 444 cyber-related incidents in 2024, the most out of any critical infrastructure industry. Despite this reality, many hospitals and health systems feel unprepared to respond and recover from these threats. The Travelers Risk Index survey found that only 51% of healthcare respondents were confident their organizations have best practices in place to prevent or mitigate a cyber event. Key challenges driving this lack of confidence include: Continue reading

Become Your Own Job Fair Ringleader

Posted on by

Walking into (or logging onto) a job fair can be incredibly intimidating. While having a wide variety of companies to meet with is great, it can be overwhelming. The crowds of fellow job seekers highlight just how many people are competing for the same position. Being repeatedly asked questions about your strengths, weaknesses, and goals can make even the most self-assured person second guess themselves. However, these discomforts are exactly what make these events valuable resources for job seekers. Being able to meet with multiple companies in one place at one time is incredibly efficient, and those difficult conversations help you hone your story and message, improving your presentation each time you deliver answers.

To mitigate some of the anxiety and capitalize on the power of job fairs, consider these tips for making the most of your attendance. Continue reading

Supporting AI Growth in Government with Professional Education

Posted on by

Artificial Intelligence (AI) is being incorporated into the function of government in numerous ways. The AI.gov website includes more than 700 AI use cases across federal agencies.

Among the many projects, AI is being used to:

These pilot projects provide a peek into the power of AI to improve the speed and effectiveness of decision-making and service to citizens. However, for AI to have a government-wide impact, the success and challenges of these solid projects need to be shared. Continue reading

The Lesser Known Missions of Homeland Security

Posted on by

The mission of the Department of Homeland Security (DHS) is widely understood, "to safeguard the American people, our homeland, and our values." However, in carrying out this mission, DHS touches a number of areas that may not seem intuitively tied to homeland defense but are nonetheless critical challenges facing the nation as well as agencies across government.

Artificial Intelligence

DHS has a key role in securing the homeland from cyber threats. The department's Cybersecurity & Infrastructure Security Agency (CISA) is the operational lead for federal cybersecurity and the national coordinator for critical infrastructure security and resilience. With this responsibility, CISA and other DHS agencies play a key role in shaping policy and guidance around emerging technology use. Today, they are keenly focused on helping agencies safely and ethically use Artificial Intelligence (AI) to improve mission effectiveness.

DHS is leading by example. AI is currently being used to aid border-patrol efforts, combat drug trafficking, and create age-progression estimations of missing children. While implementing AI itself, DHS is also focused on how adversaries may use AI and creating ways to defend against the technology being used to spread disinformation, create more advanced cyber attacks, or speed the development of weapons. Continue reading