Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Server Hardening Checklist: 8 Weekly Checks to Reduce Configuration Drift

Summer is a good time to catch up on hardening work that gets postponed the rest of the year. Change freezes ease up, project calendars thin out, and the servers that quietly drifted out of spec during Q1 and Q2 finally get some attention. Over the next eight weeks, we’re publishing one practical hardening review each week. None of these require a project plan or a change advisory board meeting.

Selling to the Government? Here's What CMMC Means for You

CMMC Phase 2 enforcement lands in November 2026, and C3PAOs are already warning about assessment capacity. If your configuration management domain isn't audit-ready, this is the walkthrough to fix that. Roy Ludmir breaks down what changed in enforced CMMC as of November 2025, what auditors actually test versus what they just ask about, and where most organizations get stuck below full compliance — plus which security baselines to standardize on and how to build an evidence package that holds up under a real assessment.