Here is the summary of CMMC 2.0 released on November 4th 2021: In CMMC 2.0, there are changes to the administrative management (program) of CMMC but the fundamentals of the CMMC security requirements (model) remains the same.

Do you have a plan on how to permanently delete sensitive data accidentally delivered to your organization through email? If you do not, buckle up and read on.

Do you have a plan on how to permanently delete sensitive data accidentally delivered to your organization through email? If you do not, buckle up, read on and you are welcome!

Microsoft now has an answer for Vulnerability Management using Microsoft Defender for Endpoint.

CMMC – Level 3 - IA.3.083 - “Use multifactor authentication for local and network access to privileged accounts and for network access to non-privileged accounts.”

The Microsoft Product Placemat for CMMC is an interactive view representing how Microsoft cloud products and services satisfy requirements for CMMC practices.

July 2021 Update: Compliance Manager premium assessment templates will no longer require a Microsoft 365 E5 or Office 365 E5 license as a prerequisite.

January 2021 Update: “The Compliance Manager is now available in all Microsoft 365 cloud offerings, including GCC and GCC High!”

As of the time of this article, If the following affects your organization:

Microsoft provides multiple Microsoft 365 Government offerings to address the compliance requirements of various US government agencies and contractors sponsored to hold controlled, unclassified information.

Setting up a New On-Premise Active Directory (AD) when Office 365 Users already Exist and Sync'n Both

Plan, Communication & Process Notes: