Stop phishing attacks through more effective training and positive company culture Phishing attacks, where someone sends a fraudulent email, call or text in order to trick the recipient into giving up information, accounted for more than $10 billion in losses in the U.S. during 2023, according to data from the Federal Trade Commission. And these threats are on the rise: in the past six months, … [Read more...] about An Employee-Centric Approach to Phishing Prevention
An Overview of the Risk Management Framework Steps
Improve your cybersecurity with the seven Risk Management Framework steps Cybersecurity is the foundation of any successful security program. Because of this, the DoD has standardized the approach to securing information systems through the Risk Management Framework (RMF). The RMF isn’t a one-size-fits-all solution but rather a seven-step process tailored to help you identify the correct … [Read more...] about An Overview of the Risk Management Framework Steps
Phishing Trends and Techniques You Need to Know
As phishing attacks rise, knowledge of common phishing trends is the greatest weapon to combat them While phishing attacks have decreased from 2022 to 2023, consequences from these attacks are soaring, with a 144% increase in financial penalties and a 50% increase in reputational damages year over year due to phishing attacks, according to Proofpoint’s 2024 State of the Phish report. Scammers' … [Read more...] about Phishing Trends and Techniques You Need to Know
Best Practices For Site Security
How to implement site security and handle common violations SCIF and SAPF security doesn’t begin when the facility is operational—it begins with construction. Securing the construction site is a required part of any ICD 705 project, though the specific requirements will vary based on the unique risks and vulnerabilities of the location and program. An Overview of Site Security The … [Read more...] about Best Practices For Site Security
Identifying and Analyzing Threats in OPSEC
How to complete the second step of OPSEC effectively Operations Security, or OPSEC, is a five-step process that aims to prevent adversaries from accessing sensitive or classified information. These five steps are identifying the sensitive information that needs to be protected, identifying threats to that information, analyzing your company or contract’s vulnerabilities, assessing the risk the … [Read more...] about Identifying and Analyzing Threats in OPSEC
Your Guide to Derivative Classification
Understand derivative classification and how to avoid common mistakes Derivative classification is the process of creating new classified information from existing classified information, and understanding how to create it can be an important skill for those holding a Personnel Clearance (PCL). Derivative classified information can’t be created by just anyone, but if it’s part of your cleared … [Read more...] about Your Guide to Derivative Classification
Interim Versus Final Personnel and Facility Clearances
What can you do with your interim PCL or FCL? When seeking a Personnel Clearance (PCL) or Facility Clearance (FCL), you may be granted an interim clearance before receiving your final clearance. While interim clearances can be a convenient way to get to work as quickly as possible, there’s no guarantee they will be granted, and the lack of an interim clearance doesn’t mean that a final … [Read more...] about Interim Versus Final Personnel and Facility Clearances
Best Practices to Maintain and Enact an Emergency Action Plan
Keep your company and facility ready to respond to any possible emergencies Whether it’s the earthquake drill often practiced in elementary schools or the blaring fire alarms alerting an office to head outside, Emergency Action Plans (EAPs) play a significant role in all areas of life and work. And while they might feel tedious or monotonous at times, that is for good reason. Some of the … [Read more...] about Best Practices to Maintain and Enact an Emergency Action Plan
An Overview of the SCIF Accreditation Package
Which documents you need for your accreditation package and best practices An issue with your accreditation package could potentially lead to major delays in getting your SCIF or SAPF operational. Avoid tripping at the accreditation “finish line” by making sure you know exactly what you need to provide your Accrediting Official (AO). The Site Security Manager (SSM) will be the primary person … [Read more...] about An Overview of the SCIF Accreditation Package
