Commander & Chief Services

---

The Department of Defense announced the Cybersecurity Maturity Model Certification in 2019. Since then, we have helped several aerospace, manufacturing, and defense firms retain and gain contracts with Prime Contractors like Boeing, Northrop Grumman, Lockheed Martin, Raytheon, L3 Harris, Electric Boat, and many more.

The National Institute of Standards and Technology SP 800-171 titled " Protecting Controlled Unclassified Information (CUI) in Nonfederal Systems and Organizations" provides guidelines for protecting sensitive information in nonfederal systems. 

The Federal Trade Commission's Safeguards Rule are now in effect! We have the platform for the required:

• Written Information Security Program (WISP)
• Training
• Qualified Individual

The International Standards Organization 27001 is a standard for organizations to follow to develop a comprehensive information security plan. Our virtual Cyber Team will guide your organizations through the complexities to ISO 27001 certification.

The number of States that have passed privacy legislation continues to skyrocket and it is only becoming more popular, thus causing more work and more confusion for small businesses. Our privacy experts are standing by to answer any questions you have on CCPA/CPRA, CPA, CTDPA, UCDPA, VCDPA, and many more! 

The General Data Protection Regulation is the most comprehensive and widely scoped privacy legislation in the world. We can help you identify how your organization fits in with the scope of the regulation and what to do when you get a Data Subject Access Request.

Higher education institutions handle a significant amount of sensitive information, including personal data of students and staff, financial information, and academic records. The Gramm-Leach-Bliley Act (GLBA) is a federal law that requires financial institutions, including colleges and universities, to protect the non-public personal information of their customers. Read more about "Information Security & Compliance Challenges in Higher Education" on our blog.

Developed by the American Institue of CPAs (AICPA) SOC 2 focuses on assessing and reporting on an organization's Information Security Program. SOC 2 reports are developed by organizations to give assurance to current and potential clients that their sensitive data is safe. We can guide you to SOC 2 compliance, certification, & develop the reports you need to win new clients and retain your current clients with this as a differentiator.

Do you provide medical services or provide support to medical services and interact with Personal Health Information? We have the expertise and proven track record to get your organization HIPAA-compliant within 180 days.