DynaGrace Enterprises Moves to New Location in Morgan, Utah

DynaGrace Enterprises Moves to New Location in Morgan, Utah

Sometimes, it is just time.  Time to move!

Mother and Daughter Team in Morgan, Utah Picture by: Britney Brent

Mother and Daughter Team in Morgan, Utah Picture by: Britney Brent

DynaGrace Enterprises Moves to New Location in Morgan, Utah

DynaGrace Enterprises Moves to New Location in Morgan, Utah Picture by: Britney Brent

DynaGrace Enterprises has moved out of a home-based office into a commercial building in Morgan, Utah.  We have determined our growth opportunities need a storefront, and for other legal and regulatory reasons, we moved into a beautiful, rural, commercial, building that allows us to be more successful.

We love having a place where prospective clients routinely visit to make a decision to purchase our services.  We feel we are definitely more professional in a commercial office.

We were limited on space for doing the services that we really want to do such as website design, publishing books, STEM activities for children and a podcast studio.

And well…after 12 years working at home it was time to be more productive in a different environment.  Focus and staying on task are the theme for DynaGrace Enterprises in 2018.

Physically leaving home to go to an office helps us be more efficient and produce more.

We have a pure team environment now with Jennifer Remund, Machelle Lowry and myself, Linda Rawson collaborating on upcoming projects.  We have already jumped into the business community by attending Women In Business events put on by the Northfront Business Resource Center.  We participated in the first-ever Festival of Trees put on by the Morgan Chamber of Commerce.

We have a singular mission, and that is to make DynaGrace Enterprises a Women-Owned, rural, powerhouse for professional business services.

We are an example of the less than one percent in the State of Utah, and we are here to stay and prosper.

Come by and say hello.

The new address is 298 E 300 N, Morgan, Ut  84050.  Our hours are Monday through Friday from 9:00 AM to 4:30 PM.

DynaGrace Enterprises, Morgan, Utah Picture by: Britney Brent

DynaGrace Enterprises, Morgan, Utah Picture by: Britney Brent

#womenowned #bosslady #rural #ladyboss #entreprenur #girlpower #success #wosb

What is Blockchain?

What is Blockchain?

BlockChain

Blockchain refers to the technology behind the creation of Bitcoin.

It is a shared, reliable, trusted, public ledger of transactions which is accessible to everyone for inspection but which is not under the control of any single user. Blockchains refer to distributed databases in which a continuously growing list of data transaction records are maintained, and cryptographically secured from illegal revision and tampering.

There are two kinds of records in a blockchain database, transactions, and blocks. Blocks clasp batches of valid transactions that are hashed and also encoded into a Merkle tree. Each block contains the hash of the previous block in the blockchain, thereby connecting the two.

In 1991, Stuart Haber and W. Scott Stornetta described the first work on a cryptographically secured chain of blocks, but in 2008 an anonymous person or team known as Satoshi Nakamoto with the real identity cloaked in secrecy conceptualized the first distributed blockchain.

The bitcoin blockchain file size has been growing rapidly, in August 2014; it has expanded from 20 GB to over 100 GB in size.

There are three main types of blockchains, public blockchains, federated blockchains, private blockchains.

Public Blockchains

The protocols of Public Blockchains are based on Proof Of Work (POW) consensus and robust algorithm with open source, meaning everyone can participate in them and explore them. It also signifies that any interested person can download the code and begin running a public node on their local device and validate transactions in the network, thus effectively participating in the consensus process. Public blockchains also allow anyone in the world to read and use the network to send transactions and expect to see them added to the blockchain provided the transation is valid.

Examples of Public Blockchains are Ethereum, Bitcoin, Dash, Monero, Dogecoin, Litecoin, etc.

Federated Blockchains or Consortium Blockchains

Consortium Blockchains is the type of blockchains which operate under a group’s leadership. Unlike in Public Blockchains, a person with an independent internet connection is not allowed to take part in the verification of transactions process.

Federated or consortium blockchains are faster and provide more privacy for transactions. They are mostly used in the banking sector, and the consensus process is strictly under the control of a pre-selected set of nodes. For instance, a consortium of 16 financial companies each of which is operating a node, and out of which 11 must sign every block for the block to be valid.  Under this type of blockchain, the right to read the block may be limited to the participants only or open to the public.

Examples of Federated Blockchains are EWF (Energy), B3i (insurance), R3 (Banks), Corda.

Private Blockchains

These are blockchains where permission to read may be public or limited to an arbitrary extent, while write permissions are centralized to one organization. Applications that are allowed under Private Blockchains are likely to be database management, auditing, and more which are internally limited to one company, and may never require public readability.

Private BlockChains offers the benefit of setting up groups and participants for internal verification of transactions, and they readily comply with state regulations on data privacy rules.

Examples of Private Blockchains are Multichain, MONAX.

The use of the blockchain for bitcoin is widely known to be the first cryptocurrency to solve the double spending problem without the need of a trusted administrator, and because of this, it is the most commonly traded digital currency till date. The global blockchain market of bitcoin is anticipated to worth over $20 billion by 2024. With this wide expectation, one can easily ask this question: Is cryptocurrency the evolution of money?  With the way bitcoin blockchain file size grew in the last years, it has achieved just that to become the first digital currency to fit in this definition for creating the question.

Linda Rawson, is the CEO, and Founder of DynaGrace Enterprises, (http://DynaGrace.com) which is a Women-Owned, 8(a) Minority, Small Business. She is also the author of The Minority and Women-Owned Small Business Guide to Government Contracts.

 

 

Linda Rawson Of Dynagrace Enterprises Launches Kickstarter Campaign for STEM Weather Board Game

Linda Rawson Of Dynagrace Enterprises Launches Kickstarter Campaign for STEM Weather Board Game

Whacky Weather Board Game

Whacky Weather Board Game

Kickstarter Launch

Linda Rawson, President, and CEO of DynaGrace Enterprises – an 8(a), WOSB, Information Technology and writing services company, has launched a Kickstarter Campaign.  The Science, Technology, Engineering and Mathematics (STEM) board game is titled WeatherEgg Kids:  Whacky Weather Board Game.  The board game will help raise funds for her invention, called Weatheregg™ and teach children about weather.

Linda was born in a small farming community in Utah.  She was raised by her mother, who was a single mom raising five children. Her mother never went to college and did not have any dreams of owning her own business.  Because of this, Linda thinks it is essential for children, especially girl children, to acquire more knowledge and skills in STEM.

“It is a great privilege to bring a small piece of science to children in the hopes that they become our scientists of the future,” stated Linda Rawson, President, and CEO of DynaGrace Enterprises. “DynaGrace Enterprises has been heavily involved in Department of Defense Information Technology work.  The WeatherEgg™ is an invention that is almost to fruition.  To fund that invention, I created another invention. One that helps children learn science. In particular, weather science.”

What about STEM?

With the onset of STEM (Science, Technology, Engineering, and Mathematics) curriculum in education, science needs to be fun.  The WeatherEgg™ kids, animated 3D humanoid characters, make weather science fun.  Sweet, loveable, Holley Humidity, moody Peggy Pressure, mischievous Wesley Wind, and the hero Tommy Temperature can cause quite a storm.  The WeatherEgg Kids will appear in a mobile application and a web application to teach children about weather.

DynaGrace Enterprises hopes to lead the field in teaching children about the weather.  DynaGrace Enterprises continues to support a path of growth while maintaining a reputation as a provider of Information Technology and writing services.

Customers can learn more about DynaGrace Enterprises by visiting the company’s website at DynaGrace.com or by calling the company directly at 800-676-0058.  Please learn more about WeatherEgg by visiting WeatherEgg.com.

The official Kickstarter link is here -> https://www.kickstarter.com/projects/522610746/weatheregg-kids-whacky-weather-board-game

The official Press release is here -> https://www.pr.com/press-release/735638

DynaGrace Enterprises Recognized as Utah Patriot Partner

DynaGrace Enterprises Recognized as Utah Patriot Partner

DynaGrace Enterprises Accepting Patriot Partner Award

DynaGrace Enterprises Accepting Patriot Partner Award

DynaGrace Enterprises – an 8(a), WOSB, Information Technology and Technical Writing Company, has been recognized as a Utah Patriot Partner.

The program is pioneered by Utah Governor Gary Herbert and the Utah Department of Workforce Services to encourages Utah businesses to hire Veterans as a first choice to unlock job creation for our country’s veterans.

DynaGrace Enterprises is one of the most recent beneficiaries of the Utah Patriot Partnership. DynaGrace Enterprises’s President and CEO, Linda Rawson and Vice President, Jennifer Remund accepted the award from Eden Johnson, a hardworking, professional Veterans’ representative and Workforce Development Specialist with the Utah Department of Workforce Services.

Eden helped DynaGrace Enterprises with some recent job openings. DynaGrace Enterprises contacted her to utilize job programs in which they could hire veterans first. Linda Rawson is committed to providing Veterans with a way forward after serving our country. Job seeking Veterans can be found by accessing Utah’s online Job Connection service. Eden helped with the wording, publishing, and distribution of the job announcement.
DynaGrace Enterprises accepted the challenge from Governor Herbert to pledge their support for returning heroes and not only considered but wanted Utah Veterans for the recent job openings. DynaGrace Enterprises joined other Utah businesses to hire and support Veterans returning from the world’s battlefields.

“It is a great privilege to be recognized in the Utah Patriot Partnership Program,” stated Linda Rawson, President, and CEO of DynaGrace Enterprises. “DynaGrace Enterprises has been heavily involved in Department of Defense work and is moving full forward in a growth opportunity. The Utah Department of Workforce services is providing the mechanism, additional insight, and resources needed to acquire employees who are veterans. Veterans have been taught discipline and structure. They show up on time and do their job. This is a win-win for both the employee and the company.”

DynaGrace Enterprises Patriot Partner Award

DynaGrace Enterprises Patriot Partner Award

Programs, like the Utah Patriot Partnership, are making a difference. In a July 2017 report published by the Department of Labor, the Veteran unemployment rate was 3.5 percent, down from 4.7 percent last July, and the lowest July rate since 2001 (not seasonally adjusted, 20 years and over). In comparison, the non-veteran unemployment rate for July 2017 was 4.2 percent.

Customers can learn more about DynaGrace Enterprises by visiting the company’s website at DynaGrace.com or by calling the company directly at 888-676-0058.

The official Press Release is here -> DynaGrace Enterprises Recognized as Utah Patriot Partner

What does NIST SP 800-171 mean?

What does NIST SP 800-171 mean?

What does NIST SP 800-171 mean?

NIST SP 800-171

NIST SP 800-171

As a small business in the Department of Defense (DoD) Government Contracting realm we do have cybersecurity experience.  We have done the DoD Information Assurance Certification and Accreditation Process (DIACAP) which has now been transitioned to the Risk Management Framework (RMF).  RMF is a six-step process developed by the National Institute of Standards and Technology (NIST) to apply risk management to Information Systems.

RMF Certification.  Very time consuming and costly.  My employees have been great to work through all the necessary paperwork with patience and expertise to get this certification for the Information Systems they are responsible for.

Last week, I met with Adam Austin, Reggie Hall, and Alli Bey of Haight Bey, Engineering and Security Solutions who started to put a small fear into my soul.   They informed me that a little over a year ago a revision to the DoD Federal Acquisition Regulation Supplement (DFARS) contained some new cybersecurity requirements for DoD contractors who process unclassified information.   The final document is the National Institute of Standards and Technology’s (NIST) Special Publication (SP) 800-171, Protecting Controlled Unclassified Information (CUI) in Nonfederal Information Systems and Organizations.

If you are a government contractor, failure to meet these requirements will result in the loss of your contracts because the confidentiality of CUI in non-federal systems is now being mandated.

The requirements in DFARS clause 252.204-7008 are:

(b) The security requirements required by contract clause 252.204-7012, shall be implemented for all covered defense information on all covered contractor information systems that support the performance of this contract.

(c) For covered contractor information systems that are not part of an information technology service or system operated on behalf of the Government (see 252.204-7012(b)(2)) –

(1) By submission of this offer, the Offeror represents that it will implement the security requirements specified by National Institute of Standards and Technology (NIST) Special Publication (SP) 800-171, “Protecting Controlled Unclassified Information in Nonfederal Information Systems and Organizations” (see http://dx.doi.org/10.6028/NIST.SP.800-171)that are in effect at the time the solicitation is issued or as authorized by the contracting officer, not later than December 31, 2017.

(2)

(i) If the Offeror proposes to vary from any of the security requirements specified by NIST SP 800-171 that are in effect at the time the solicitation is issued or as authorized by the Contracting Officer, the Offeror shall submit to the Contracting Officer, for consideration by the DoD Chief Information Officer (CIO), a written explanation of

(A) Why a particular security requirement is not applicable; or

(B) How an alternative but equally effective, security measure is used to compensate for the inability to satisfy a particular requirement and achieve equivalent protection.

(ii) An authorized representative of the DoD CIO will adjudicate offeror requests to vary from NIST SP 800-171 requirements in writing prior to contract award. Any accepted variance from NIST SP 800-171 shall be incorporated into the resulting contract.

What does this clause mean to me?

Wait…December 31, 2017?  Adjudicate?

What do I have to do?

The clause summarizes that DoD government contractors like me need to properly secure their OWN IT systems that process any deliverable due to the government.  Examples are the following:

  • Research and Engineering Data including Engineering Drawings, Associated Lists, Specifications, Standards, Process Sheets, Manuals, Technical Reports, Technical Orders, Catalog-Item Identifications
  • Data Sets
  • Studies, Analyses and Related Information
  • Computer Software Executable Code and Source Code
  • Monthly or Quarterly Reports

If you’re a DoD government contractor developing and submitting Contract Data Requirements List (CDRLs), you’ll need to ensure, on your own dime, that your Information Systems meet some stringent cybersecurity requirements by the end of 2017 just like the BIG government Information Systems.

In addition to securing your IT systems, you’ll need to ensure you have a process in place to continuously monitor your organization for cyber-incidents and be able to report any such incidents to the DoD quickly.

The NIST SP 800-171 contains 14 sections of requirements broken down into 110 required controls.  Each requirement is mapped to NIST SP 800-53 and ISO/IEC 27001 controls.  You may be familiar with these controls if you have been involved in securing government IT systems.   The following are those 14 sections and their appropriate “who” and “why.”

NIST SP 800 171 Requirements

NIST SP 800 171 Requirements

The 131 risk mitigating actions, called controls, are comprised of 670 individual assessments that a contractor will need to perform to verify the measures have been taken.

What can I do to mitigate this risk?

  1. Understand Controlled Unclassified Information (CUI).
  2. Conduct NIST 800-171 CUI Self-Assessment provided by the Common Solutions Group (https://library.educause.edu/resources/2016/9/nist-sp-800-171-compliance-template) to analyze the gaps between my organization and the NIST SP 800-171 requirements.
  3. Create my Plan of Actions & Milestones (POA&M) to implement corrections.
  4. Build cybersecurity into my bottom line and internal processes. I need to build and execute a process to ensure continuous monitoring and assessment of the controls to mitigate risk beginning with the most critical mitigation.
    1. The plan has to have tasks that validate and verify the plan is being executed.
    2. Tasks must be performed to ensure continuous risk assessment and progress on the POA&M.
    3. Develop and implement a process to identify and report cyber-incidents to the DoD
  5. Get my CUI Self-Attestation and CUI Deliverables including the following:
    1. Written Information Security Program (WISP)
    2. Configuration Management Plan (CMP)
    3. Information Security Continuous Monitoring (ISCM)
    4. Information System Contingency Plan (ISCP)
    5. Incident Response Plan (IRP)
    6. Security Awareness Program (SAP)
    7. Security Assessment Report (SAR)
    8. System Security Plan (SSP)

Just another thing for a small business that requires planning, people, and resources.  The good news is I have to write the POA&M, and that may be enough for the contracting officer to declare me in compliance.

Daunting.  Doable.

If you are a DoD contractor that hasn’t yet implemented NIST SP 800-171, your organization may want to start looking at it.  It could mean the difference between winning or NOT winning a contract.  More and more contracting officers will be requiring companies to be in compliance.  I would suggest you get ahead of the power curve.

If you are not sure if your organization is affected by this requirement reach out to the experts at Haight Bey, Engineering, and Security Solutions.

As DynaGrace Enterprises goes through the journey to this mandated tightening up of our own cybersecurity practices watch for subsequent articles about our journey.

Linda Rawson, CEO, and Founder of DynaGrace Enterprises, (http://DynaGrace.com)

A Women-Owned, 8(a) Minority, Small Business

Author:  The Minority and Women-Owned Small Business Guide to Government Contracts
Between POWER and GRACE lies EXCELLENCE
Facebook  |  Instagram  |  Twitter  |  LinkedIn – Personal  |  LinkedIn – Company

Goldman Sachs 10,000 Small Business

Goldman Sachs 10,000 Small Business

 

Pin It on Pinterest