Cyberspin
A podcast to help you navigate CMMC.
Episodes
What are organizations getting wrong when it comes to CMMC? In this replay of March’s CMMC Connect, Redspin’s assessors break down the real-world questions organizations are asking right now, from Rev. 2 vs. Rev. 3 implications to scoping decisions, shared environments, and what truly changes when you add systems into your boundary.
We cover what happens after certification, how to think about inherited controls and micro-business ...
How did this much happen in just 30 days?
In this replay episode of February's CMMC Connect, we break down the latest DFARS Class Deviations, GSA’s new “CMMC-like” program, key takeaways from the Cyber AB Town Hall, and the biggest questions shaping the CMMC landscape right now.
We cover why mock assessments can’t convert to formal certifications, why documentation is everything, how contract requirements drive CMMC Levels, and wha...
CMMC is moving fast, and the questions from the DIB are getting more specific...
In this January 2026 replay of Redspin's live CMMC Connect, our CMMC Certified Assessors (CCAs) unpack the latest updates from the field and answer real-world questions OSCs are facing as CMMC Level 2 assessments ramp up. This episode (literally) covers:
-
Recent DoD CMMC FAQ updates and what they clarify (and don’t)
-
ISACA’s new role as CAICO and...
In this holiday edition of CMMC Connect, the Redspin team wraps up a busy year by tackling real questions from the Defense Industrial Base, sharing practical best practices, and looking ahead to what 2026 may bring for CMMC. From lessons learned in the field to what contractors should be thinking about next, this session covers a wide range of timely topics — with a little holiday fun mixed in.
We also share what’s new for CMMC Con...
Phase 1 of CMMC is officially here, and this month’s CMMC Connect dives straight into what contractors are experiencing on the ground. Redspin’s panel of CCAs break down the newest DoD updates, rising assessment backlogs (or is it rising false-starts?), early Level 2 contract requirements, and the most common “not met” trends they’re seeing in real assessments.
They also unpack key findings from Redspin’s new Momentum but Slow Move...
In this special Halloween edition of CMMC Connect, the Redspin team swapped their suits for costumes and dove into what’s next as CMMC Phase 1 officially begins on November 10.
Join Dr. Thomas Graham, Jeremy Mares, Rob Teague, and Phil Conrad, hosted by Lauren Frickle, as they unpack:
-
Why November 10 marks the start of CMMC, not the finish line
-
What to do before the rollout — including updating your SPRS scores
-
When servi...
CMMC timelines, DFARS 7025, FedRAMP CRM responsibilities, interim compliance signals, and what’s next for NIST 800-171 Rev. 3, our team of CMMC Certified Assessors (CCAs) covered the hottest questions the DIB is asking right now. If you’re aiming for Level 2 or fielding customer requests for proof of certification in Phase 1, this conversation is your quick-hit guide to what matters most.
The long-awaited final 48 CFR DFARS 7021 rule has dropped, and CMMC is officially headed into contracts. In this special live call-in edition of Cyberspin, the Redspin team gives their quick breakdown to the finalized rule before answering audience questions on everything from SSO/MFA and joint ventures to whether small contractors can realistically achieve Level 2 certification. We also dive into separation of duties, prime pressu...
In this live CMMC Connect session, Redspin’s experts tackle audience questions head-on: How soon after 48 CFR finalization will CMMC Level 2 show up in contracts? What’s the best way to secure printers in hybrid work environments? And what happens when CMMC shortfalls trigger False Claims Act investigations? Tune in for real-world answers, practical tips, and a candid look at the signals DoD contractors can’t afford to miss.
In this episode, we unpack one of the most common questions in the CMMC space: What actually triggers a reassessment? From changes in CUI flow to infrastructure shifts and company acquisitions, we break down when you might need to re-certify—and what’s still awaiting clarity from the DoD.
We also share lessons learned from the field, including common missteps organizations are making in cloud environments. Misconfigured policies, ...
Big moves in CMMC rulemaking are happening, and the signals from DoD leadership are loud and clear. In this episode, we break down the recent milestone that sent 48 CFR to OIRA for final review, the critical July 18th memo from THEE Secretary of Defense, and what it all means for the Defense Industrial Base. We’ll talk terminology ("effective" vs. "enforceable"), and timelines for contractors.
Subscribe to Cyberspin on Apple iTun...
In this CMMC Connect replay episode, we dive into the most pressing questions facing the Defense Industrial Base right now. Kicking things off with a state-of-the-ecosystem update, our panel tackles the big-ticket items—how much CMMC actually costs, where we are in the implementation timeline, and how many assessments have already been completed. We also break down the current stats on authorized C3PAOs and certified professionals...
This month, our expert panel tackles the real-world challenges of CMMC compliance, from getting started and surviving assessments to sustaining success. We break down training must-haves, insider threat risks, MFA requirements, retroactive CUI headaches, and how tools like VDI and FedRAMP fit into your strategy. Tune in for practical tips, pitfalls to avoid, and audience Q&A that dives into the details you actually care about.
...With headlines swirling about the new DoD nominee reviewing 48 CFR( the rule that puts CMMC in contracts), is CMMC on the chopping block? Rob Teague, Dr. Thomas Graham, and special guest David Bailey break down the headlines and clear up the confusion.
Subscribe to Cyberspin on Apple iTunes, Spotify, or your preferred podcast platform. You can always stream the latest episodes at redspin.com.
- Preparing for CMMC assessments
- The implications of using AI in compliance
- Requirements for cloud services.
The session also addresses common questions regarding vulnerability data, SPRS compliance, and th...
This month, we break down the FAR CUI proposed rule and what it means for your CMMC readiness. Our experts, Phil, Les, Dr. Thomas, Rob, and Jeremy, tackle key topics, including:
- Security awareness training – Who needs it and why?
- Reporting requirements – What’s changing and how to stay compliant.
- Assessment costs – What impacts pricing and how to save money.
- GRC tools & cloud compliance – Choosing the right solutions.
They discuss the surprises in the recently published proposed FAR CUI rule, the status of the 48 CFR rule (CMMC in contracts) and when to expect it to be finalized, as well as what CMMC Level 3 means for the Defense Industrial Base (DIB) and where to start.
...
In this episode of Cyberspin, we bring you a replay of December’s CMMC Connect session, featuring an engaging discussion with our CCPs and CCAs: Jeremy Meyers, Rob Teague, Dr. Thomas Graham, and Belen Coleman. The team tackles audience questions, dives into the implications of the finalized and in effect 32 CFR rule, and explores practical strategies for achieving and maintaining CMMC compliance.
Key topics include:
- Prepari...
Popular Podcasts
Current and classic episodes, featuring compelling true-crime mysteries, powerful documentaries and in-depth investigations. Follow now to get the latest episodes of Dateline NBC completely free, or subscribe to Dateline Premium for ad-free listening and exclusive bonus content: DatelinePremium.com
If you've ever wanted to know about champagne, satanism, the Stonewall Uprising, chaos theory, LSD, El Nino, true crime and Rosa Parks, then look no further. Josh and Chuck have you covered.
The Clifford Show with Clifford Taylor IV blends humor, culture, and behind-the-scenes sports talk with real conversations featuring athletes, creators, and personalities—spotlighting the grind, the growth, and the opportunities shaping the next generation of sports and culture.
The official podcast of comedian Joe Rogan.
Saskia Inwood woke up one morning, knowing her life would never be the same. The night before, she learned the unimaginable – that the husband she knew in the light of day was a different person after dark. This season unpacks Saskia’s discovery of her husband’s secret life and her fight to bring him to justice. Along the way, we expose a crime that is just coming to light. This is also a story about the myth of the “perfect victim:” who gets believed, who gets doubted, and why. We follow Saskia as she works to reclaim her body, her voice, and her life. If you would like to reach out to the Betrayal Team, email us at betrayalpod@gmail.com. Follow us on Instagram @betrayalpod and @glasspodcasts. Please join our Substack for additional exclusive content, curated book recommendations, and community discussions. Sign up FREE by clicking this link Beyond Betrayal Substack. Join our community dedicated to truth, resilience, and healing. Your voice matters! Be a part of our Betrayal journey on Substack.