The Electrical Contractors' Association of City of Chicago (ECA) held its May Regular Membership Meeting on Wednesday, May 11, 2022 at Mastro's Steakhouse in Chicago, IL. The evening program featured industry updates, and a guest presentation from Nick Espinosa, Chief Fanatic, Security Fanatics. Topic items discussed during Mr. Espinosa's presentation included the following: Cybersecurity Maturity Model Certification (CMMC), applicability in regard to working for a General Contractor working for the DOD, controlled unclassified information (CUI)* security obligations, among other areas.
We thank Mr. Espinosa for his time at the meeting and the lively discussion concerning Cybersecurity Maturity Model Certification (CMMC).
*Controlled Unclassified Information (CUI)
CUI is government information that is to be protected from public disclosure. Established by Executive Order 13556 in 2010, the Controlled Unclassified Information (CUI) program standardizes the way the entire Executive branch handles unclassified information that requires safeguarding or dissemination controls pursuant to and consistent with law, regulations, and Government-wide policies. The Department of Defense (DOD) is an agency within the Executive branch of the U.S. government.
Critical unclassified information is being exfiltrated from Defense contractor networks by malicious cyber actors who seek to damage our national security. Safeguarding CUI is the impetus behind the Cybersecurity Maturity Model Certification (CMMC) and the DFARS Clause 52.204-7012. Proper safeguarding of CUI begins with identifying CUI in your network. Identification of CUI begins with understanding the types of CUI your company receives or generates on behalf of the DOD.
Excerpt from Department of Defense website: https://dodcui.com/
Pictured above from left to right are:
Rick Jamerson, ECA President, Jamerson & Bauwens Electrical Contractors, Inc., and
Nick Espinosa, Chief Fanatic, Security Fanatics.