[Hidden-tech] Looking for help with Cyber Security Compliance

Kristie Stauch-White kristie at ftllabscorp.com
Thu Jan 16 18:56:13 UTC 2020 

FTL Labs Corporation is a small R&D business in Amherst that does much of
its work for the Department of Defense. The Cyber Security regulations are
becoming more complex and we could use an outside consultant to help us
establish best practices. The federal regulations that apply to us can be
found here
<https://csrc.nist.gov/publications/detail/sp/800-171/rev-1/final>.

Tasks may include:

   -

   Create a Policies document, listing each of the security controls as FTL
   policies
   -

   Create a Procedures (or Standard Operating Procedure (SOP)) document
   -

   Create a System Security Plan
   -

   Get a DoD-approved medium assurance PKI certificate so we can report
   security incidents to the DoD
   -

   Figure out a security monitoring system (like Nagios), which probably
   needs to monitor the firewall (and hopefully not everyone’s individual
   machines), for a continuous monitoring solutionCreate a Plan of Actions and
   Milestones document to notate any controls that have not been met and a
   plan of actions and milestone dates for meeting the controls
   -

   Implement the technical solutions that are required, based on the
   previous documents
   -

   Create an Incident Response Plan to comply with the requirements of
   incident response, including protocols for contact and reporting to Dibnet.
   -

   Create or find existing Cybersecurity awareness training program for
   yearly employee training.



Kristie Stauch-White
VP of Operations and Technology
pronouns: she/her

www.ftllabscorp.com

>
>

-- 

FTL Labs Corporation
www.ftllabscorp.com <http://www.ftllabscorp.com>
479 
West Street Suite 48, Amherst, MA 01002
(413) 992-6075


CONFIDENTIALITY 

NOTICE: This e-mail communication and any attachments may contain 

confidential or privileged information for the use of the designated 

recipients named above. If you are not the intended recipient, you are 

hereby notified that you have received this communication in error and 

that any review, disclosure, dissemination, distribution, or copying of 
it 
or its contents is prohibited. If you have received this message in 
error, 
please promptly notify the sender or admin at ftllabscorp.com 
<mailto:admin at ftllabscorp.com> and immediately delete this message and any 
attachments from your system.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.hidden-tech.net/pipermail/hidden-discuss/attachments/20200116/d8f59823/attachment.html>

Google
More information about the Hidden-discuss mailing list