Episodes
7 days ago
January 2025 CMMC Connect
7 days ago
7 days ago
This month, we break down the FAR CUI proposed rule and what it means for your CMMC readiness. Our experts, Phil, Les, Dr. Thomas, Rob, and Jeremy, tackle key topics, including:
Security awareness training – Who needs it and why?
Reporting requirements – What’s changing and how to stay compliant.
Assessment costs – What impacts pricing and how to save money.
GRC tools & cloud compliance – Choosing the right solutions.
Join us for practical insights and expert advice on navigating CMMC.
CMMC Connect happens every last Thursday at 1 PM ET. Register: redspin.com/events/cmmc-connect
Subscribe to Cyberspin on Apple iTunes, Spotify, or your preferred podcast platform. You can always stream the latest episodes at redspin.com.
Thursday Jan 23, 2025
Thursday Jan 23, 2025
In this episode, the Redspin team of Certified CMMC Assessors (CCAs) gets together to break down the latest updates and buzz in the CMMC ecosystem.
They discuss the surprises in the recently published proposed FAR CUI rule, the status of the 48 CFR rule (CMMC in contracts) and when to expect it to be finalized, as well as what CMMC Level 3 means for the Defense Industrial Base (DIB) and where to start.
The team also explores the potential impact of a new administration on rulemaking progress and CMMC initiatives, dives into updates on NIST 800-171 Rev 3, and discusses whether CMMC could expand across the entire federal government.
Listen for input directly from a C3PAO, so you don’t have to sift through it all yourself!
Check out the FAR CUI rule here—specific questions for public comment begin on page 46.
Subscribe to Cyberspin on Apple iTunes, Spotify, or your preferred podcast platform. You can always stream the latest episodes at redspin.com.
Thursday Dec 19, 2024
December CMMC Connect
Thursday Dec 19, 2024
Thursday Dec 19, 2024
In this episode of Cyberspin, we bring you a replay of December’s CMMC Connect session, featuring an engaging discussion with our CCPs and CCAs: Jeremy Meyers, Rob Teague, Dr. Thomas Graham, and Belen Coleman. The team tackles audience questions, dives into the implications of the finalized and in effect 32 CFR rule, and explores practical strategies for achieving and maintaining CMMC compliance.
Key topics include:
Preparing for the effective date of 32 CFR and beyond.
Addressing challenges with EMASS and certification timelines.
Best practices for balancing compliance and operational needs.
Insights into evidence requirements, self-assessments, and scoring complexities.
A practical look at cloud solutions, hybrid environments, and architectural best practices.
Whether new to CMMC or seeking expert guidance, this session offers actionable advice and insights to help your organization succeed. Don’t forget to join us live for the next CMMC Connect session on the last Thursday of every month!
Subscribe to Cyberspin on Apple iTunes, Spotify, or your preferred podcast platform. You can always stream the latest episodes at redspin.com.
Wednesday Nov 27, 2024
Wednesday Nov 27, 2024
In this special episode, Robert Hill, CEO at Cyturus, shares the inside scoop from his discussion with Representative Gary Palmer’s staff about Palmer’s joint resolution disapproving the CMMC rule.
Learn what this resolution means for DoD contractors, how it could impact compliance efforts, and why staying focused on the path to compliance is more important than ever.
Listen to clarify the implications and next steps for navigating this critical moment in the defense industrial base.
Subscribe to Cyberspin on Apple iTunes, Spotify, or your preferred podcast platform. You can always stream the latest episodes at redspin.com.
Monday Nov 25, 2024
Monday Nov 25, 2024
This conversation is a replay of Redspin's November 2024, CMMC Connect Q&A session. The conversation covers various aspects of the CMMC process, including boundary considerations, asset definitions, and strategies for preparing for assessments.
The speakers (some who are live from the Cyber AB's CEIC Conference) provide insights into the latest updates on the new CMMC Assessment Process (CAP) release, how Managed Service Providers (MSPs) can prepare for Level 2, and best practices for making the assessment process smoother.
They also discuss the challenges of handling unsupported operating systems and the importance of risk management in these scenarios. This conversation delves into various aspects of CMMC compliance, including the necessity of MFA for Wi-Fi access and the handling of CUI in different contexts. The discussion also covers the importance of background checks for third-party employees, the management of visitor controls in research environments, and updates on compliance processes and requirements such as FIPS validation. The panelists emphasize the need for thorough documentation and due diligence in maintaining compliance standards.
Subscribe to Cyberspin on Apple iTunes, Spotify, or your preferred podcast platform. You can always stream the latest episodes at redspin.com.
Monday Nov 04, 2024
October CMMC Connect: Updates and Guidance with Matt King!
Monday Nov 04, 2024
Monday Nov 04, 2024
This episode shares October’s CMMC Connect session, which features special guest Matt King, Belcan's Chief Security and Data Officer, alongside Jeremy Mares and Robert Teague from Redspin.
The team breaks down the latest CMMC updates, including insights on the finalized 32 CFR timeline, tips for defining CUI, and new requirements for MSP and ESP certifications.
They also tackle audience questions on key topics like scoping, training, DIBCAC High certification (JSVAP), and much more. Whether you’re a defense contractor or cybersecurity professional, this episode offers valuable insights into navigating CMMC requirements.
Subscribe to Cyberspin on Apple iTunes, Spotify, or your preferred podcast platform. You can always stream the latest episodes at redspin.com.
Tuesday Oct 15, 2024
Navigating the CMMC Final Rule
Tuesday Oct 15, 2024
Tuesday Oct 15, 2024
Rob Teague and the team discuss the anticipated 32 CFR final rule. They explore initial key takeaways from the rule, including changes in certification processes for external service providers, DIBCAC-High assessments, the appeals process, record retention requirements, and the impact of mergers and acquisitions on certification.
Rob, Dr. Thomas Graham, and Jeremy Mares emphasize the importance of acting quickly to navigate the upcoming certification landscape and address the challenges posed by potential assessment backlogs.
Subscribe to Cyberspin on Apple iTunes, Spotify, or your preferred podcast platform. You can always stream the latest episodes at redspin.com.
Monday Sep 30, 2024
September CMMC Connect: In the Cloud, Timelines, and Small Businesses
Monday Sep 30, 2024
Monday Sep 30, 2024
This episode is a replay of the latest CMMC Connect session, where we tackle critical updates on CMMC rulemaking, public comments, and timelines. It features insights from the "Queen of CMMC" Tara Lemieux, Rob Teague, who joins us live from NCS, and cloud security expertise from Steve Akers.
We dive into essential tips for compliance, Cloud environments, the 48 CFR rule, and what small businesses need to know as 2025 approaches. Don't miss this deep dive into CMMC and the chance to prepare for what’s next.
Subscribe to Cyberspin on Apple iTunes, Spotify, or your preferred podcast platform. You can always stream the latest episodes at redspin.com.