“The Keys to Everything IT”

A free webinar series.

 

“Everything IT” is a pretty broad mandate.

But that’s what we do. And we’re offering a regular series of free webinars to help you understand and apply various complexities of Information Technology management. On this page you can view past webinars, download the slide decks from them and sign up for future webinars.

If you have any questions about the topics below or suggestions for future webinars, just send us an email at ask_ATS@networkats.com.

 

 

 

Webinar Series One: “The Keys to CMMC Compliance”

DoD government contractors know that CMMC Compliance is critical. They also know that the Compliance process can be complex and confusing.

Each webinar in our CMMC Compliance series is designed to provide you with a solid understanding of the new DFARS requirements. Our goal is to help you “connect the dots” in the complex CMMC Compliance process.

Webinar #1 – “NIST 800-171 Self-Assessment and the CMMC”

This event touched on all the relevant information pertaining to the Defense Federal Acquisition Regulation Supplement (DFARS) Interim Rule which went into effect on December 1, 2020. The DFARS rule introduced not only the CMMC requirement, but also, two other clauses which impact defense contractors who handle Controlled Unclassified Information (CUI).

The new clauses require companies who handle CUI to perform a NIST 800-171 self-assessment, using NIST 800-171A and the new DOD Assessment Methodology, and report their raw score into the Supplier Performance Risk System. The new rule also allows for DOD to conduct “higher” level assessments that involve document review and potentially an on-site assessment by the Defense Contract Management Agency (DCMA).

You can view a recording of the event here and download the slides here.

 

Webinar #2 – “What is CUI and How Do I Know if I Have it?”

CUI stands for Controlled Unclassified Information.

From creation through destruction, there are requirements for handling CUI at every stage. These also have implications for the information systems and physical spaces that touch CUI. Understanding CUI is the very first step in your CMMC journey. If your company handles CUI, or may in the future, then you will need to obtain the CMMC maturity level 3.

In this webinar we introduced the concept of the CUI Life Cycle (CUI Life Cycle (dodcui.com)). Authorized holders of CUI have requirements at each stage in the CUI life cycle. The CUI Life Cycle is a framework by which to consider the information you’re handling and where it fits within the information life cycle to help determine the applicable requirements that apply to your information currently.

Click here to download the slides from the presentation. Click here for the recording of the webinar.

 

Webinar #3 – “Myth-busting CMMC Compliance.”

In our third webinar, the ATS and OCD Tech CMMC webinar panel debunked numerous CMMC myths.  While there are countless myths surrounding the CMMC, we grouped the into the three major categories that we most often hear: CMMC maturity levels myths, self-assessment myths, and solution myths.

Some of the myths we covered are:

  • If you do not handle CUI you only need CMMC maturity level 1
  • If RFPs will require CMMC maturity level 2 or not
  • Whether or not to send your SSP, POA&M, or any other evidence to anyone.
  • If you need GCC-High to handle CUI
  • Whether there is a list of vendors you must use in order to be compliant

Click here to download the slides from the presentation. Click here for the recording of the webinar.

 

Next up –  Webinar #4 – “From Confusion to Compliance.”

Wednesday, May 5, 1 p.m. EDT

In this one, we’re going to walk you through how we helped one company get through the CMMC compliance process unscathed.

Experts from both American Technology Services and OCD Tech will show you how we connected all the dots for them. We’ll explain the situation, the challenges and the solutions – in real world terms.