Cyberspin

A long time ago (okay, April 24, 2025), in an ecosystem not so far away…Redspin hosted a CCA and CCP Q&A packed with practical advice for navigating CMMC compliance. Topics spanned NIST 800-171 Rev. 3 updates, ERP system management, SSP maintenance, CUI handling in Azure GCC vs. GCC High, remote access security, and cost distribution across federal contracts.
 
Panelists also explored user privileges, FedRAMP equivalency, and how CUI management differs between civilian and DoD contexts. Listen in for real-world insights and strategies to conquer the complexities of CMMC!
 
CMMC Connect happens every last Thursday at 1 PM ET. Register: redspin.com/events/cmmc-connect
Subscribe to Cyberspin on Apple iTunes, Spotify, or your preferred podcast platform. You can always stream the latest episodes at redspin.com.

With headlines swirling about the new DoD nominee reviewing 48 CFR( the rule that puts CMMC in contracts), is CMMC on the chopping block? Rob Teague, Dr. Thomas Graham, and special guest David Bailey break down the headlines and clear up the confusion.
Subscribe to Cyberspin on Apple iTunes, Spotify, or your preferred podcast platform. You can always stream the latest episodes at redspin.com.

Insights from our CMMC Assessor team on:
Preparing for CMMC assessments
The implications of using AI in compliance
Requirements for cloud services.
The session also addresses common questions regarding vulnerability data, SPRS compliance, and the differences between GCC and GCC High environments. The conversation concludes with a live AMA session where participants can engage directly with the panelists. 
CMMC Connect happens every last Thursday at 1 PM ET. Register: redspin.com/events/cmmc-connect
Subscribe to Cyberspin on Apple iTunes, Spotify, or your preferred podcast platform. You can always stream the latest episodes at redspin.com.

This month, we cover important updates regarding CMMC compliance, including a JSVA update and Katie Arrington's return to the driver's seat.
 
Our panelists delve into the complexities of compliance with CUI regulations, the challenges of recovering costs in future contracts, and the importance of customer responsibility matrices in FedRAMP. It also addresses the nuances of CMMC compliance, particularly regarding subcontractor challenges and the integration of ERP solutions, plus so much more.
 
CMMC Connect happens every last Thursday at 1 PM ET. Register: redspin.com/events/cmmc-connect
Subscribe to Cyberspin on Apple iTunes, Spotify, or your preferred podcast platform. You can always stream the latest episodes at redspin.com.

This month, we break down the FAR CUI proposed rule and what it means for your CMMC readiness. Our experts, Phil, Les, Dr. Thomas, Rob, and Jeremy, tackle key topics, including:
Security awareness training – Who needs it and why?
Reporting requirements – What’s changing and how to stay compliant.
Assessment costs – What impacts pricing and how to save money.
GRC tools & cloud compliance – Choosing the right solutions.
Join us for practical insights and expert advice on navigating CMMC.
CMMC Connect happens every last Thursday at 1 PM ET. Register: redspin.com/events/cmmc-connect
Subscribe to Cyberspin on Apple iTunes, Spotify, or your preferred podcast platform. You can always stream the latest episodes at redspin.com.

In this episode, the Redspin team of Certified CMMC Assessors (CCAs) gets together to break down the latest updates and buzz in the CMMC ecosystem.
 
They discuss the surprises in the recently published proposed FAR CUI rule, the status of the 48 CFR rule (CMMC in contracts) and when to expect it to be finalized, as well as what CMMC Level 3 means for the Defense Industrial Base (DIB) and where to start.
The team also explores the potential impact of a new administration on rulemaking progress and CMMC initiatives, dives into updates on NIST 800-171 Rev 3, and discusses whether CMMC could expand across the entire federal government.
Listen for input directly from a C3PAO,  so you don’t have to sift through it all yourself!
Check out the FAR CUI rule here—specific questions for public comment begin on page 46.
 
Subscribe to Cyberspin on Apple iTunes, Spotify, or your preferred podcast platform. You can always stream the latest episodes at redspin.com.

In this episode of Cyberspin, we bring you a replay of December’s CMMC Connect session, featuring an engaging discussion with our CCPs and CCAs: Jeremy Meyers, Rob Teague, Dr. Thomas Graham, and Belen Coleman. The team tackles audience questions, dives into the implications of the finalized and in effect 32 CFR rule, and explores practical strategies for achieving and maintaining CMMC compliance.
Key topics include:
Preparing for the effective date of 32 CFR and beyond.
Addressing challenges with EMASS and certification timelines.
Best practices for balancing compliance and operational needs.
Insights into evidence requirements, self-assessments, and scoring complexities.
A practical look at cloud solutions, hybrid environments, and architectural best practices.
Whether new to CMMC or seeking expert guidance, this session offers actionable advice and insights to help your organization succeed. Don’t forget to join us live for the next CMMC Connect session on the last Thursday of every month!
Subscribe to Cyberspin on Apple iTunes, Spotify, or your preferred podcast platform. You can always stream the latest episodes at redspin.com.

In this special episode, Robert Hill, CEO at Cyturus, shares the inside scoop from his discussion with Representative Gary Palmer’s staff about Palmer’s joint resolution disapproving the CMMC rule.
Learn what this resolution means for DoD contractors, how it could impact compliance efforts, and why staying focused on the path to compliance is more important than ever.
Listen to clarify the implications and next steps for navigating this critical moment in the defense industrial base.
 
 
Subscribe to Cyberspin on Apple iTunes, Spotify, or your preferred podcast platform. You can always stream the latest episodes at redspin.com.