Want to Know What's Really Going on With CMMC Assessments? Get All the Latest CMMC Rollout News Straight from the Source on "The Virtual CISO Podcast"
There are still a lot of unknowns with the US Department of Defense (DoD) Cyber Maturity Model Certification (CMMC). When will CMMC assessments begin? How much will they cost? When do we need to be ready? The Chair of the CMMC-AB Training Committee shares a full and candid update on the latest episode of The Virtual CISO Podcast from Pivot Point Security.
HAMILTON, N.J., Aug. 14, 2020 /PRNewswire-PRWeb/ -- Organizations that participate in US Department of Defense (DoD) contracts are well aware that a big change is coming in their contractually mandated security requirements. Compliance with the DoD's new Cyber Maturity Model Certification (CMMC)—which requires a third-party assessment—will gradually supplant self-attested compliance with NIST SP 800-171 per the Defense Federal Acquisition Regulation Supplement (DFARS) 252.204-7012 "cyber clause" currently specified in most DoD contracts.
In the interim, the DoD is demonstrably ramping up NIST 800-171 compliance enforcement, prompting many subcontractors to take a hard look at their current security postures and what will be needed now and in the near future to participate in new DoD contracts.
To help SMBs in the US defense industrial base (DIB) get ready for the CMMC while ensuring they can prove DFARS 252.204-7012 compliance now, we invited Ben Tchoubineh to be our guest on The Virtual CISO Podcast from Pivot Point Security.
An entrepreneur in cyber and IT services and education, Ben is a Director and Chair of the Training Committee for the CMMC Accreditation Body (CMMC-AB). Nobody knows more than Ben about how CMMC training and assessments will be handled in the coming months and years. Hosting the discussion is John Verry, Pivot Point Security's CISO and Managing Partner.
Topics that Ben and John cover include:
- Pacing of the CMMC rollout, including when assessments will begin
- How the CMMC-AB plans to train assessors and other practitioners to support the assessment process
- Cost factors for CMMC assessments
- Why DoD subcontractors can't afford to wait to prepare for the CMMC
If your business participates in US federal government contracts, especially with the DoD, listening to this episode of The Virtual CISO Podcast will answer many of your most pivotal questions on CMMC Compliance.
To hear this podcast episode with Ben Tchoubineh anytime, along with any of the other episodes in The Virtual CISO Podcast series, visit this page.
About Pivot Point Security
Since 2001, Pivot Point Security has been helping organizations understand and effectively manage their information security risk. We work as a logical extension of your team to simplify the complexities of security and compliance. We're where to turn—when InfoSec gets challenging.
SOURCE Pivot Point Security
Share this article