 Part of our jobs all of us out there involves doing things that we don't like to do or Doing things that we're not so comfortable doing Today's video is one of those things that I don't really like to do and I'm not so comfortable doing at the same time However, it is critical. It is important And if I do not tell you or if you don't hear about it Then you may turn around and blame me for why you're not prepared or why you're not ready Today we are discussing the new cybersecurity Protocol that's coming down in 2020 that the government the DOD is going to start requiring on some contracts Yeah, I know cybersecurity, right? We've all heard about cybersecurity. We've heard about bots and people meddling our elections and things like that, but The reason why I have to tell you this information is because like I said, this is 2020 is around the corner I mean as the time of this recording We are only a few weeks away from the new year So if I don't tell you about this new requirement this de farce requirement and Hopefully you've already heard about it somewhere. You may not know exactly what it is and what it means But I'm sure somewhere along the lines if you're registering Sam Somebody sent you an email or message and told you you have to get ready The reason why I've held off on this as long as I have is because one the government set this ruling out at the beginning around somewhere around 2017 and Until now they still haven't figured out what they want to do. So there's been different ways in which the government has Classified how they want to start doing cyber and they haven't come to a unified agreement I have personally been to offices of some of my fellow podcast guests and associates who Have implemented these new cyber protocol and some of these new procedures, but for the most part I Would imagine it's been a challenge specifically For small businesses mom and pop businesses Businesses with no employees. So I know the challenge that's presents to all of us out there And like I said, please don't turn me off just yet. Give me a chance. I promise you we're gonna get to the good part of this soon Because I had the privilege to speak with someone who does Cybersecurity they do the certifications for contractors in this space His podcast episode is going to be released coming up in January I may push it make it sooner just because of the importance of it. Nevertheless, Jonathan Hart I had a privilege of speaking with him recently on my show Gulfconn Giants podcast about Cybersecurity requirements and trust me folks. I'm thinking about you. I'm thinking about myself. I want to do Things that do not impact us Severely so again, whether it's impacting us monetarily or it's impacting us with time or it's impacting us Our our company in some other way that may be harmful So you as you will see and hear in this upcoming Clip that I take I specifically said look what can we do for small businesses because they don't have $25,000 to give no one so you're gonna hear what Jonathan responses What do you tell you what stuff to advise people to start doing now? If any? Oh, and let me let me let me qualify that, you know, one of the things that I've always said to people and again and most of my audience are small businesses, right? They're not they're not right. They can't afford $25,000 You know, one of the things I said is again No one wants to be the leader, right and spend this money make a commitment And then the government decides to change the policy later, which we know happens So that's that is for for us. That's our fear, right? As you go out there you make the commitment you invest and like you and I just discussed if I invested in CMC 0.3 and now by the time a jammer comes right out 1.0 and then the contract language is not gonna start talking to September How much money have I spent already? Go ahead, right? So this is my advice. So don't worry about CMC. It's not even the law yet What is the law that 7012 clause that 7012 ruling what that there's three requirements to that one You have to have adequate security to you have to report to the to the div net within 72 hours of a compromise or an incident three You have to flow that clause down if you're primed all your subcontractors the adequate security requirement is the myth 871 so go ahead download the next day or 171 all the hundred ten security controls and start implementing those CMC is going to take those into consideration. They're taking those into there They're taking those into their Level one through five process and if you implement all those Subsecurity requirements in the next year or once everyone you're gonna be roughly a level three at CMC So it's not money that you're wasting and it is law right now that you have to implement that the those security standards So you might there might be a little percentage of a change from a left to a right to be officially a level three But you'd be sitting pretty good if you take those nist error 171 controls and go ahead and holistically Implement those in your IT infrastructure of your company. I Like that now you said the 7012 policy What's that? Yeah That's the that's the default that's the sense there was this 252.204 I got it the defaults clause. Okay. Yep. I'm familiar with that one. Okay. Yeah, I just we and again for me If I'm confused, maybe someone listening might be as well. All right, so the defaults clause. That's the one where okay adequate security report any type of Breach within a certain frame and then a flow Here's my offer that I give to everybody if you want to know more email me call me go to our website type You know email info, dude, we'll explain all this for free. No charge all this for free We are all about spreading Knowledge because of the more people that know about this the More prepared they can say they can get their company, right? And we'll even we'll even say listen, you don't have to use us There's this company that's I'll name competitors because it doesn't matter to me whether we get your business I would love to have your business what matters to me is that your network is secure so that you can continue to do business with the government so that we Can protect our fellow warfighters downrange so whenever our weapons are firing the actual fire when we push our Buttons to make missiles go go off. They don't just fall the sky. It's important. So I'm not If you want information Feel free hit me up. I'll gladly give you information I'll even give you competitors names where you can go and say well, you know H2O you're a little too little too Pricy I'm gonna go with Joe over here, but here's what I won't give you I will not give you a shitty Cybersecurity company that won't do you right? I'll make sure we vet even our competitors I will give you good cybersecurity companies that I know that you use you'll be doing just as well if you use that Now by no way shape or form am I? endorsing Jonathan I just wanted to share the information put it out there because he has Already done this for hundreds of businesses and you hear the full clip in our podcast when it's released but he's he Seems to be the leader and actually helping Certified companies and businesses and getting prepared for the new upcoming requirements again I've already if you haven't got his information. I'll make sure I'll leave it in the notes page You can reach out to him for free as he said to talk about what you need to do or how you can start getting prepared To meet these new upcoming requirements I don't want anyone to get caught with their pants down and be surprised when their Opportunities taken away because they're not prepared again with we're gonna have more Information and insight as we get closer to the dates But at the same time I did want to prepare everyone and let people know the ones who are interested in learning who are interested in Getting the information they need so that they're ready and not caught like I said before which are pan-taken out So again, thank you so much for tuning in I hope this video helps some people like I said for me This is a not so fun subject and it's not something that I'm particularly an expert in But just like the rest of you be out there I'm going to have to get myself prepared and get the companies that I represent prepare as well for these new rules and Regulations again as they come down a pipe. I'll be letting everyone know. Thank you so much as always for tuning in