What we’re talking about
What is Cybersecurity Maturity Model Certification? The Office of the Under Secretary of Defense for Acquisition & Sustainment has released the Cybersecurity Maturity Model Certification program. The program will be made effective in new programs released by the Department of Defense (DoD) and will be a requirement for product and service providers. This program has
Continuing Changes in Export Compliance Maintaining export compliance programs presents challenges to organizations of all sizes. Given the complexity of the International Traffic in Arms Regulations (ITAR), Export Administration Regulations (EAR), Antiboycott Regulations, and various sanctions, this is not surprising. Additionally, international political events are forcing agencies to continually make changes to these regulations to
What is EMI Susceptibility? EMI/EMC susceptibility is the vulnerability of an electronic device to electromagnetic energy that can result in disruptions to that device’s normal operation. These disruptions can result in physical damage of the device, or unwanted operational events that can lead to property damage, injury, or death. This is of special concern where
Using Your QMS to Enhance Profitability Using your Quality Management System (QMS) to improve processes can enhance customer satisfaction and increase profitability. The key to achieving these goals is for the management team and senior leadership to identify the strategic direction of the organization and align the QMS to achieve those goals. Certification body quality
Cybersecurity Threats by Industry Sector Cybersecurity threats remain a significant concern for organizations in every sector. IBM’s 17th Cost of a Data Breach Report provided insights in to the nature of the threat environment in 2021. This report provides an assessment of risks and strategies for protecting data and responses to data breaches. Among its
What is Developmental Test and Evaluation? Developmental Test & Evaluation (DT&E) refers to testing performed on components and subsystems designed for use on U.S. defense platforms. This testing is conducted at various stages in the development and acquisition process to verify that the product meets specified levels of performance. DT&E is normally conducted by the
ITAR Export Compliance Regulations International Traffic in Arms Regulations (ITAR) Export Compliance regulations control the export of articles that are developed for defense-related applications. This includes items that are designed for military systems or intended for a military purpose. The Directorate of Defense Trade Controls (DDTC), which is part of the Department of State, administers
EMI/EMC Test Plans EMI/EMC Test Plans are important in preparing for your trip to the lab. The test plan should communicate all relevant information about testing requirements and the nature of the system to be tested. This will allow the test laboratory to sufficiently assess the requirements needed to complete testing. These requirements include: size
ISO 9001: 2015 Quality Management System Requirements Proper documentation is the cornerstone of ISO 9001:2015. Creating a system of documentation that is appropriate to your company’s requirements is crucial. This is because the documentation defines the manner in which it will conduct business. Paying attention to the design of your Quality Management System (QMS) at
ISO 27001 Prevents Cyberattacks Implementing an ISO 27001 Information Security Management System (ISMS) prevents cyberattacks. The Ponemon Institute in a 2017 study found that a typical firm experiences 130 security breaches each year. Mitigating these breaches requires more than advanced IT practices, it requires a dedicated management system. ISO/IEC 27001 is such a system. It
Using Product Test Standards to Develop a Test and Evaluation Program There is a seemingly endless amount of product test standards and specifications. These documents set criteria for compliance, provide guidance for evaluation, and sometimes assist in the development of analysis and test programs of both consumer products and military products. They are all constantly evolving
Corrective Actions Provide Opportunities for Improvement Corrective Actions are excellent opportunities for process improvement and increasing profitability. It is necessary however, to implement a process to these control corrective actions. This is often perceived by some as being a cumbersome, unnecessarily complicated, and time consuming process. However, a properly constructed Quality Management System can ensure
ITAR Restricts Export to Cambodia The Department of State has amended the International Traffic in Arms Regulations (ITAR) to apply export restrictions on Cambodia. The United States will now deny licenses and other approvals to export and import defense articles and services to Cambodia. These restrictions, which became effective December 9, 2021 reflect a new
In an effort to ease requirements for the protection of Controlled Unclassified Information (CUI), the Department of Defense (DoD) has announced CMMC 2.0. This new version of the Cybersecurity Maturity Model Certification (CMMC) program will pare down the scope and requirements placed on the Defense Industrial Base. Initial CMMC Cybersecurity Requirements Daunting CMMC was created
The Evolution of the Tailoring Process in MIL-STD-810 MIL-STD-810 Environmental Engineering Considerations and Laboratory Tests is a standard for environmental developmental test and evaluation. Its purpose is to provide guidance for the development of analysis and test criteria to evaluate materiel, identify deficiencies and defects, and demonstrate compliance. The tailoring process develops valid test criteria
What is a Voluntary Self-Disclosure A Voluntary Self-Disclosure (VSD) is conducted when an organization recognizes that violations or suspected violations of Export Regulations of the United States have occurred. This disclosure can reflect the organization’s due diligence in detecting, and correcting these violation. When conducting a voluntary self disclosure to the federal government the following
