Government Archives

AI Compliance Requirements for State and Local Government: What You Need to Know

by Danielle Barbour March 30, 2026March 30, 2026 | Regulatory Compliance

State and local government agencies are deploying AI across citizen services, public safety, benefits administration, tax enforcement, and court systems at a pace that has outrun the governance frameworks most...

AI Compliance Requirements for Federal Contractors: What You Need to Know

by Danielle Barbour March 30, 2026March 30, 2026 | Regulatory Compliance

Federal contractors occupy one of the most demanding AI compliance environments in the enterprise market. The regulatory stack they operate under — CMMC 2.0, NIST 800-171, FedRAMP, ITAR, FISMA, and...

CMMC 2.0 and AI Agents: What “Authorized Access” Means for CUI-Touching Workflows

by Danielle Barbour March 25, 2026March 25, 2026 | CMMC Compliance

Defense contractors are deploying AI agents across proposal development, program documentation, supply chain management, and technical data workflows. Many of these workflows touch controlled unclassified information. That puts them squarely...

NIST 800-171, CUI, and AI: What Your System Security Plan Is Missing

by Danielle Barbour March 25, 2026March 25, 2026 | CMMC Compliance

Thousands of organizations handle controlled unclassified information under government contracts without being in the CMMC certification pipeline. Federal contractors, research universities, state agencies, technology suppliers, and professional services firms that...

Canada ITSG-33 and AI: Meeting CSE’s Security Control Framework in Agentic Environments

by Danielle Barbour March 25, 2026March 25, 2026 | Regulatory Compliance

Canadian federal agencies, their contractors, and private sector organizations that handle government-classified information are deploying AI agents across document processing, citizen service workflows, regulatory review, and program administration. Many of...

ITAR, AI Agents, and Controlled Technical Data: The Export Control Compliance Gap

by Danielle Barbour March 25, 2026March 25, 2026 | Regulatory Compliance

Defense contractors and aerospace manufacturers are deploying AI agents across proposal development, engineering documentation, technical data package management, and supply chain workflows. Many of these workflows touch controlled technical data...

Why FIPS 140-3 Encryption Matters for AI Agent Data Access

by Bob Ertl March 25, 2026March 25, 2026 | Cybersecurity Risk Management

Most organizations deploying AI agents against regulated data believe they have encryption covered. The API calls use TLS. The data at rest is AES-256. The model hosting provider has a...

The Federal Government Just Told You Its Cloud Security Process Is Broken

by Paul Sechser March 24, 2026March 24, 2026 | Cybersecurity Risk Management

On March 18, 2026, ProPublica published an investigation that should alarm every organization that relies on FedRAMP authorization as a trust signal for cloud security. The story is straightforward: Federal...

CMMC 2.0 Levels Explained: Advanced and Expert Cybersecurity Guide

by Bob Ertl March 18, 2026 | CMMC Compliance

MMC 2.0 Level 2 (Advanced) Level 2 (Advanced) is the second level of the CMMC 2.0 framework. It is an intermediate level that requires companies to implement more specific practices...

Only 48 Cloud Services Hold FedRAMP High authorization — and Agencies Are Feeling the Squeeze

by Danielle Barbour March 17, 2026March 17, 2026 | Regulatory Compliance

The scarcity of FedRAMP High authorized cloud services is not an abstract compliance concern. It is a procurement bottleneck that forces federal agencies to make security tradeoffs with their most...

Federal Cyber Policy Shift: Offense Over Defense Strategy

by Patrick Spencer March 11, 2026March 11, 2026 | Regulatory Compliance

The White House released two significant cyber policy documents on the same day — a pairing that was not accidental. The executive order focuses on operational coordination to disrupt transnational...

AI Safety Asia: Crisis Diplomacy and Evidence-Based AI Governance at India Summit 2026

by Tim Freestone March 11, 2026March 11, 2026 | Cybersecurity Risk Management

Something shifted at the India AI Impact Summit 2026, and it wasn’t subtle. The conversation about governing advanced AI systems stopped circling around whether governments should step in and landed...

What Happens When You Give AI Agents Real Power

by Tim Freestone March 10, 2026March 10, 2026 | Cybersecurity Risk Management

The pitch is compelling. AI agents that can manage your email, execute code, coordinate with other systems, and act on your behalf—all without you lifting a finger. The productivity gains...

Data Sovereignty in the Defense Industrial Base: What Contractors Need to Know

by Danielle Barbour March 4, 2026March 4, 2026 | CMMC Compliance

For most industries, data sovereignty compliance comes down to a geographic question: where is data allowed to live, and which government’s laws govern it? For defense contractors, that question is...

DHS AI Strategy Unveiled: Kiteworks Delivers the Solution

by Patrick Spencer March 4, 2026March 4, 2026 | Cybersecurity Risk Management

The Department of Homeland Security doesn’t do small. Twenty-two component agencies. 260,000 employees. Missions that span border security, cybersecurity, immigration, and disaster response. And now, a formal mandate to adopt...

Get started.