CMMC Entra ID KQL for Level 2 Evidence
An assessor won’t accept “we monitor Entra ID” on faith. I need records that show who signed in, what changed, when it happened, and whether the control worked. That is…
CMMC Azure Landing Zone Checklist for Small Contractors
A messy Azure tenant can turn a CMMC review into a scavenger hunt. Small contractors rarely have extra staff, spare budget, or time to clean up cloud decisions after the…
How I Remediate Intune Policy Drift for CMMC Level 2
A CMMC gap often starts as a small mismatch. The policy says one thing, the endpoint does another, and the reporting still looks fine until someone checks the real device…
CMMC VPN Logging for Level 2: A Small Contractor Checklist
A missing VPN log can turn a simple assessor question into a long week. For small contractors, CMMC VPN logging is less about fancy dashboards and more about proving remote…
CMMC Tenant Restrictions v2 for Level 2 Admin Workstations
One bad sign-in can punch a hole through an otherwise well-managed admin workstation. In a CMMC Level 2 environment, that matters because privileged devices sit close to your identity plane,…
CMMC Level 2 Wireless Security Checklist for Small Contractors
If Wi-Fi can reach Controlled Unclassified Information, it can widen your CMMC exposure fast. I see small contractors miss this because wireless feels informal, while the assessor sees it as…
My CMMC Internal Audit Checklist for Microsoft 365 Controls
A weak internal audit shows up late, usually when a contract is on the line and the evidence binder is thin. When I build a CMMC internal audit checklist for…
How I Test Conditional Access for CMMC Level 2 in Report-Only Mode
A bad Conditional Access policy never fails at a convenient time. It breaks sign-ins during payroll, blocks a sales laptop before a customer call, or leaves access to CUI exposed…
Purview Auto-Labeling for CUI in a CMMC Level 2 Program
Miss one CUI file, and your boundary story can fall apart fast. That is why so many defense contractors and subcontractors look at Purview auto-labeling for CUI before they face…
CMMC Level 2 Guide to Entra PIM for Groups
Standing admin access is the habit I find most often in CMMC gap reviews. It feels convenient, but it creates a wide attack path and weak evidence for assessors. When…