Forbes

The Five Main Steps In A Compliance Risk Assessment Plan

Cyberattacks and data breaches are no longer merely an IT problem. They have the potential to cause business disruption, financial damage and reputational harm. Data theft can introduce a raft of ...
JD Supra

‘All in all, it’s just another brick in the wall’: GSA Attempts to Rebuild the CUI Assessment Process for Civilian Contractors

Hopefully, you have already read our prior post about the General Services Administration’s (GSA) updated guide (the Guide) for protecting Controlled Unclassified Information (CUI). We quote some Bob ...
GovCon Wire

CMMC Rollout 2025: What GovCon Leaders Need to Do Today

In 2025, government contractors are navigating budget uncertainty, rising costs and tougher competition, while cybersecurity shifts from a “checkbox” to a core strategic priority. Small businesses, in ...
JD Supra

New GSA Guide Imposes Strict Cybersecurity Obligations on Government Contractors

On January 5, 2026, the U.S. General Services Administration (GSA) released Revision 1 of its IT Security Procedural Guide, “Protecting Controlled Unclassified Information (CUI) in Nonfederal Systems ...
Western Michigan University

Sample Assessment Plans

When creating an assessment plan, there are certain typical components - The document linked here was created by Dr. Marilee Bresciani (Ludvik), and can serve as a worksheet to document the assessment ...