Many cyber companies are diversifying portfolios from traditional roots in the defense industry to participate in Critical Infrastructure Protection, Fortune 500, and International markets, especially as many solutions are directly applicable to solve similar problem sets.
Exposure to a wider audience requires some additional housekeeping. We think it is worth re-looking now at your existing portfolio from two perspectives as your business ventures into these new areas:
- Department of State: Compliance with US export law and regulations
- Department of Commerce: Compliance with US commodity classifications
A quick checklist of internal compliance items to review include:
- Documentation
- Policies
- Internal audits
- Reseller oversight and compliance
- Exchange of technical data
- Recordkeeping
- Reporting requirements
- Access controls
- Training
- Exemptions
As footprints across these markets evolve, one could imagine a development cycle where lessons learned, threat intelligence, and research & development projects are pooled across these diverse sectors to evolve next generation military-grade advanced products and services.
