Archive | Quality Management RSS feed for this section

CMMC – What You Need to Know

29 Apr

cmmc-what-you-need-to-know

ASCELLON CORPORATION INVITES YOU TO FREE Cybersecurity Maturity Model Certification (CMMC) Webinar

 

Thursday, May 7th 2020 – 11:00 AM (EDT)

Register Here:https://app.livestorm.co/p/53c76116-ab83-4e37-a318-49521db70510

If you have a DoD contract, you need to know what CMMC is and how it can affect your business. This webinar will cover three things you must know about CMMC and your business.

What it is: The Cybersecurity Maturity Model Certification (CMMC) is the Department of Defense (DoD) newest verification mechanism designed to ensure that cybersecurity controls and processes adequately protect Controlled Unclassified Information (CUI) that resides on Defense Industrial Base (DIB) systems and network

How it affects your business: Without obtaining the CMMC, companies will be unable to participate in future DoD business opportunities. In other words, you can’t bid on new RFP/RFI or recompete for existing DoD contracts.

Don’t wait: This webinar will provide information on how to determine your security posture to better plan for the CMMC.

Speakers:

  • Dr. Kellep Charles, CISSP, CISA, CEH, NSA-IAM, CTA, C|PTE, C|VA
  • Adrian Williams, C/CISO, CASP+, AWS SS, AWS CSA, CEH, CCNA
  • Ron McClellan, CISSP, CCSP

As CMMC evolves, Ascellon’s cybersecurity experts are here to help you understand your current security posture and assist in implementation of best practices to achieve compliance. Since 1996, Ascellon has provided leading edge management consulting and information technology services to our customers. We have helped our customers navigate through a broad range of technical and regulatory compliance requirements.

Maintaining an Effective Quality Management System under ISO 9001:2008

10 May

This month, Ascellon passed our semi-annual ISO surveillance audit without any non-conformance citations.  It is our 18th straight semi-annual audit without any non-conformance citation.  Surveillance audits are conducted by independent certification auditors recognized by the ISO governing body. The purpose of the regularly scheduled surveillance audit is to assure the ISO certification body that the quality management system is put into practice for business operations.  The audit typically focuses on the results of internal audits which are conducted regularly, whether metrics are collected, and how the data collected are used to implement corrective or preventive actions and to improve business processes.  Our customers who require our ISO certification as a condition for doing business with us are further assured of our status as a certified organization based on the results of the surveillance audits.

As an organization, we have found that maintaining an effective ISO 9001:2008 certified quality management system requires continuous management, focus and energy.  The goal is to design a management system that is in line with the organization’s business, while satisfying the requirements of ISO.

Second, we maintain a rigorous internal audit schedule, such that all parts of the system are audited at least twice each year.  This is invaluable in preparing for external surveillance audits.  The organization hardly needs any additional preparation for surveillance audits if internal audits are well-conducted.

Finally, we get everyone involved.  The quality management system is not something for the Quality Assurance Department – it is a way of doing business across the entire organization.

In summary, management at the highest level must lead the quality management system effort, the organization must design a quality management system that fits its business processes while maintaining compliance with ISO, and the quality management system belongs to everyone, not just the QA Department.

ISO 9001-2008 Logo