IT Blog

  • net-neutrality

    Nothing Neutral About Net Neutrality

    The volume of discussion and debate surrounding so-called ‘net neutrality’ in recent days has increased dramatically.  And, as usual, it is a polarizing topic.  The President has weighed in on the issue, urging the FCC to explicitly deny service providers the right to rate-limit the Internet’s content.  His ‘request’ has been met with a venomous […]

  • secontrol

    Security Control Spotlight—By the Numbers

    By Lon J. Berman, CISSP of BAI, Inc. In this issue’s “Spotlight”, we’re not going to focus on any specific controls or families, but rather on a comparison of RMF controls and DIACAP controls. The majority of DoD information systems are currently categorized under DIACAP as “MAC II Sensitive” or “MAC III Sensitive”. These categorizations […]

  • top10rmf

    Top Ten—Sources of RMF Policy and Guidance

    By Annette Leonard of BAI, Inc. RMF-related policies and guidance come from a plethora of sources within the seemingly-convoluted federal landscape. We believe a good understanding of these sources will be helpful as you move forward in your RMF implementation. Here, then is our “Top Ten” list of RMF policy and guidance providers. 10. US […]

  • update

    Significant Update to NIST SP 800-53A

    By Kathryn M. Farrish, CISSP of BAI, Inc. At long last, NIST has finally released a draft copy of the updated version of SP 800-53A, entitled Assessing Security and Privacy Controls in Federal Information Systems and Organizations. This is an important document in the RMF “document library” because it contains the “how to” for assessing […]

  • coursedates

    RMF Training Course Dates Added

    Due to a recent surge in demand for Risk Management Framework (RMF) for DoD IT training, we have added several more classes to our calendar.  If you are not seeing a date that works for you and you have a group of people that need the training, let us know.  We can bring the training […]

  • timeline

    RMF Transition—What is the Real Timeline?

    By Lon Berman of BAI, Inc. Now that RMF is official DoD policy, every DoD system owner needs to begin planning their “transition” from DIACAP. In order to plan and execute the transition, system owners need the answers to three basic questions: What does the transition process entail? When do I need to begin the […]

  • transition

    Spotlight: Transitioning to the Risk Management Framework (RMF)

    With the publication of revised DoD Instruction 8510.01, adoption of the Risk Management Framework (RMF) by DoD has begun.  DoD programs are busy planning and implementing strategies for transitioning from DIACAP to “RMF for DoD IT”. What Efforts are Taking Place in Support of the RMF Transition? Tier 1: DoD Enterprise RMF Knowledge Service – […]

  • vspherecomparison

    VMware vSphere 5.X Training Comparison

    The information below was copied and pasted from VMware’s site. VMware vSphere: Install, Configure, Manage [V5.X] vs. VMware vSphere: Fast Track [V5.X] Which course is right for me? When choosing which VMware vSphere® 5.X training course is right for you, consider your learning objectives, level of familiarity with VMware technologies, the vSphere features you are […]

  • Apple Command Line Interface

    OSX Airport CLI Tool – Not Just for Airport APs

    Like most Mac users I love the “it just works” functionality that OSX brings to the table.  Microsoft die-hards hate such statements and will have their own choice words for people that say or write things like that.  But I, like a lot of other people, was born and raised on Microsoft OS’ and for […]

  • itilspecial

    ITIL Training Special Through Sept 30, 2014!

    IT Infrastructure Library™ (ITIL®) is the de facto best practice in IT service management. Our ITIL certification training can empower your organization through adoption of IT service management. The ITIL certification is quickly becoming very hot in the world of technology certifications.  Because of this, IT Dojo is offering a special on our live, remote online ITIL […]

  • betterbest

    RMF Training: Better Price. Better Delivery. Best Results.

    The DoD has announced that RMF for DoD IT will supercede the current DIACAP requirements. Revised DoD IA policies and procedures will not be published until later this year and there’s sure to be a “phase in” period. Why should your organization be concerned about preparing for the upcoming RMF transition now? Get Familiarized with […]

  • Security Controls RMF

    Security Control Spotlight— Organization-Defined Parameters

    By Kathryn M. Farrish, CISSP BAI Consulting Under RMF, NIST SP 800-53 is the primary source for security controls. If we compare these controls to the DoDI 8500.2 IA controls used in DIACAP, several obvious differences can be seen. Most notable among these differences is the fact that many of the NIST controls are not […]