DevOps solved the Developer and Operators conflict, although forgot other essential folks of the delivery lifecycle: Security, Compliance, and Audit. DevSecOps is an excellent reminder that security must be “DevOps’d,” but compliance and audit are missing. No need for any more DevSecAuditComplianceOps buzzwords. Let’s simply talk about Continuous Authorization. It’s best to think of continuous authorization as Zer...

PilieroMazza’s Labor & Employment for Government Contractors Team is presenting a multi-part series to help employers understand the legal and business implications of operating as a government contractor. Attorneys from the Team will share their experience and thought leadership in labor and employment-related federal and state legislation and regulations. In this series, PilieroMazza will identify hot-button issues, provide practic...

It is easy to say, “Never trust – always verify.” It is much harder to put that philosophy into practice, even though zero trust is the foundation of the Cybersecurity Executive Order released in May. It is unprecedented for an EO to be so specific in its cybersecurity directives. Despite the EO, there is no single way to approach zero trust implementation. The National Security Agency released some guidance in February about...

FutureCon Events brings high-level Cyber Security Training discovering cutting-edge security approaches, managing risk in the ever-changing threat of the cybersecurity workforce. Join us as we talk with a panel of C-level executives who have effectively mitigated the risk of Cyber Attacks. Educating C-suite executives and CISOs (chief information security officers) on the global cybercrime epidemic, and how to build Cyber Resilient organizatio...

The final step in the indirect rate lifecycle is reconciling indirect cost rates. Government contracts subject to the Allowable Cost and Payment and the Payments Under Time-and-Materials and Labor-Hour Contracts clauses must submit an adequate final rate proposal — the indirect cost rate reconciliation or incurred cost submission. The incurred cost submission is due no later than six months after the end of the fiscal year and is used t...

International travel with government funded equipment (GFE) mobile devices is expected to pick up in early 2022 as we recover from COVID-19 and travel restrictions open up. As domestic and international travel picks up, GFE mobile devices (e.g., smartphones and tablets) will facilitate government employee work productivity during foreign travel, including remote connections to office enterprise networks and databases. However, their portabilit...

Since 1999, Data Connectors has facilitated the collaboration between cybersecurity professionals and solution providers. Today, the community is comprised of over 650,000 members and 200 active vendor partners. Members enjoy informative education from industry luminaries, innovative solution providers and government agencies such as the FBI, InfraGard, US Secret Service and the Department of Homeland Security. Data Connectors brings live conf...

"How to prevent and detect corporate fraud!!" Under COSO 2013, Principle 8: "The organization considers the potential for fraud in assessing risks to the achievement of objectives". Corporate fraud is more prevalent today than ever before. Layoffs, pressures, incentives, anonymity, computerization, and lack of privacy are all contributing factors. This CPE event is focused on presenting the internal controls to fraud prevention and detection....

Do you understand PCAOB Auditing Standard 2315: Audit Sampling? Audit sampling is the application of an audit procedure to less than 100 percent of the items within an account balance or class of transactions for the purpose of evaluating some characteristic of the balance or class. PCAOB Audit Standard 2315: Audit Sampling provides an overview of the guidance for planning, performing, and evaluating audit samples. The purpose of audit samplin...

Increase Compliance and Mitigate Your Firms Risk! The Federal Acquisition Regulation (FAR), the Defense Federal Acquisition Regulation Supplement (DFARS), and agency acquisition regulation supplements require Federal prime contractors and under certain circumstances, first-tier and lower-tier subcontractors, small and large alike, to flow-down certain clauses from their Federal contracts and subcontracts when buying items from their suppliers...