Eddie Minyard

What Happens When the Government Doesn’t Mark CUI — And How Contractors Should Respond

April 20, 2026
Eddie Minyard
No Comments

In the world of federal contracting, few topics generate as much confusion and debate as Controlled Unclassified Information (CUI). Contractors frequently encounter this scenario: A Statement of Work (SOW) arrives unmarked. Technical deliverables—such as technology designs or site plans—are created based on requirements stated in that SOW. When the question of CUI marking arises, pushback […]

The Christian Doctrine: The Compliance Obligation You Can’t Escape

April 18, 2026
Eddie Minyard
No Comments

Even If It’s Not in Your Contract By Ed Minyard, CBCP, CISM, CCP, CMMC-RPCISO, ResponseForce1 LLC There is a legal doctrine that every Defense Industrial Base contractor should know — and almost none of them do. It doesn’t appear in the CMMC model documentation. It wasn’t invented by the Department of Defense. It comes from […]

Protecting CUI: It ain’t just about CMMC

April 12, 2026
Eddie Minyard
No Comments

Two Rule Changes You Need to Follow By Ed Minyard, CBCP, CISM, CCP(pending), CMMC-RPCISO, ResponseForce1 LLC If you hold federal contracts — DoD, GSA, or otherwise — two significant regulatory developments deserve your attention right now. One has been in the news. One was issued without any public notice at all. Between them, they are […]

AI and CUI : The Threat No Policy Memo Will Solve

April 11, 2026
Eddie Minyard
No Comments

The CMMC practitioner community is asking the right question: what about the risks in using AI? With AI-enabled lateral movement now a credible threat vector — not just a theoretical one — defense contractors face a challenge that a simple “don’t paste CUI into ChatGPT” policy memo simply cannot solve. That kind of policy is […]

The Field Manual the Defense Supply Chain Has Been Waiting For

April 10, 2026
Eddie Minyard
No Comments

The rules changed in February 2026, and most small defense contractors are still catching up. On February 1st, the self-attestation pathway that let contractors check a box and move on was eliminated. What replaced it is a compliance environment that is more exacting, more legally exposed, and more consequential than anything the defense industrial base […]

But it’s only a Cat 1…

September 15, 2025
Eddie Minyard
No Comments

Understanding Hurricane Categories Hurricanes are categorized using the Saffir-Simpson Hurricane Wind Scale, which ranges from Category 1 (the lowest) to Category 5 (the highest). This scale is based on a hurricane’s maximum sustained wind speed and provides estimates of potential property damage. The Dangers of Category 1 Hurricanes Despite being the lowest on the scale, […]

Strengthening Your CMMC Compliance Journey: The Critical Role of Managed Security Services

September 11, 2025
Eddie Minyard
No Comments

The Cybersecurity Maturity Model Certification (CMMC) framework represents a paradigm shift in how defense contractors approach cybersecurity. As organizations navigate the complex requirements of protecting Controlled Unclassified Information (CUI) and Federal Contract Information (FCI), many are discovering that achieving and maintaining CMMC compliance requires more than just implementing security controls—it demands ongoing expertise, monitoring, and […]

What Happens When the Government Doesn’t Mark CUI — And How Contractors Should Respond

The Christian Doctrine: The Compliance Obligation You Can’t Escape

Protecting CUI: It ain’t just about CMMC

AI and CUI : The Threat No Policy Memo Will Solve

The Field Manual the Defense Supply Chain Has Been Waiting For

But it’s only a Cat 1…

Strengthening Your CMMC Compliance Journey: The Critical Role of Managed Security Services

Quick Links

Contact Info