Awareness

CIRCIA And The Future Of Federal Cyber Incident Reporting

Lazarus Alliance 0 Comment
orange glowing circuits on a blue motherboard with a magnifying glass laying on top of it all.

For years, federal visibility into large-scale cyber incidents has depended on voluntary disclosure tied to regulations. The result has been delayed response coordination and inconsistent data quality. The Cyber Incident Reporting for Critical Infrastructure Act of 2022 (CIRCIA) changes that model by establishing a uniform reporting framework to provide CISA with near-real-time insight into major cyber events affecting critical infrastructure.

For security decision makers, this should be a welcome shift toward continuous, government-integrated incident reporting that will reshape governance and risk management.

 

Read More

Audit & Compliance Awareness

CMMC Waivers and the Potential for Strategic Certification

Lazarus Alliance 0 Comment
blue digital padlock on an abstract, transparent projection of a globe.

As the CMMC program evolves in 2026, following the solidification of the final rule and the timelines for required certification, the Cyber AB wrestles with the need to streamline adoption across contractors while maintaining strict rigor in compliance and audits. That’s where waivers come in. 

Now, across the DIB, executives have to decide whether these waivers are legitimate from a strategic perspective or something so niche and unreliable that they don’t expect to receive one. Understanding this balance is critical for organizations as they shape their long-term compliance and growth.

 

Read More