Cyberspin

Celebrate Cybersecurity Awareness Month with Redspin! We're here to guide you through CMMC (Cybersecurity Maturity Model Certification). To mark this important month, we'll be shining a spotlight on our CMMC guides each week.

In this episode, we chat with John Fitch, Azure expert who works with OSCs in building a secure encalve. John emphasizes CMMC offers significant value to both large and small contractors. It effectively...

Celebrate Cybersecurity Awareness Month with Redspin! We're here to guide you through CMMC (Cybersecurity Maturity Model Certification). To mark this important month, we'll be shining a spotlight on our CMMC guides each week.

This week, Robert Teague explains the intricacies of the assessment process, shedding light on how he assists individuals in preparing for assessment and interviews. Not only does he play a pivotal ro...

In this episode, we have the privilege of hosting a true luminary in the fields of politics, defense, and entrepreneurship - the remarkable Katie Arrington. From her pivotal role as the CISO of the Department of Defense (DoD) where she helped launch the Cybersecurity Maturity Model Certification (CMMC), to her representation of South Carolina's 94th district, Katie Arrington is a force to be reckoned with.

Celebrate Cybersecurity Awareness Month with Redspin! We're here to guide you through CMMC (Cybersecurity Maturity Model Certification). To mark this important month, we'll be shining a spotlight on our CMMC guides each week.

In this episode, we're thrilled to introduce Jeremy Mares, the first guide you will likely meet on your journey through CMMC. Listen as Jeremy breaks down the various CMMC paths that organizations can follow. ...

Celebrate Cybersecurity Awareness Month with Redspin! We're here to guide you through CMMC (Cybersecurity Maturity Model Certification). To mark this important month, we'll be shining a spotlight on our CMMC guides each week.

In this episode, we're excited to introduce Tara Leimeux, known as the "Princess of CMMC". Tune in to discover the inspiration behind her passion  and gain a deeper understanding of the dedication and hard wor...

Dr. Thomas Graham and Robert Teague chat about the latest updates and announcements regarding the Cybersecurity Maturity Model Certification (CMMC). Tune is as the two discuss the accidental release of CMMC Level 3 draft, recent rulemaking progress with CMMC now in the hands of OIRA, and give us a glimpse of what lies ahead for CMMC internationally. Listen now to stay informed about the evolving landscape of CMMC and its impact on ...

We unravel the world of Managed Services and their role in Cybersecurity Maturity Model Certification (CMMC). Explore the dynamic landscape of Managed Services, focusing on security and cloud solutions tailored to meet your CMMC needs.

Whether you're grappling with limited IT staff, budget constraints, or with on-premises systems, Managed Services offer a solution to your pain points. Learn how Managed Services providers, like us a...

Join Redspin's Rob Teague and Thomas Graham, along with special guests Chandler Hall and Steve Pratt from Sentar, as they demystify CMMC documentation compliance in this episode.

Discover the critical role of documentation for OSCs and its significance in the CMMC process. Our experts define documentation in the context of CMMC and unravel its constant evolution. Delve into SSPS and its key components, including high-level ODPs, po...

In this episode, we're going to dive into a topic that has been making waves in the CMMC community - the updates introduced in NIST 800-171 Revision 3 and explore the significant impact for organizations seeking Cybersecurity Maturity Model Certification (CMMC) certification.

Join us as we navigate through the key changes and enhancements introduced in Revision 3 and how they shape the landscape of CMMC. We discuss the updates, the...

In this episode Matt Travis, CEO of the Cyber AB joins us to discuss the latest updates and processes in the Cybersecurity Maturity Model Certification (CMMC) rulemaking timeline, as of March 3rd, 2023.

Matt breaks down what the proposed rule looks like, how long it will take before its finalized, and more.

Whether you're leading your organizations CMMC efforts, are a C3PAO, or simply following along with this important cybersecuri...

This episode addresses one topic taken from our top ten list of most common failed practices from the CMMC & DIBCAC High assessments. 

Today we discuss Non-Federal Organization (NFO) controls, where Appendix E comes into play, updates on the NIST 800-171 rev.3 announcement, and dig a little into cybersecurity strategy. 

Subscribe to CyberSpin: Apple iTunes, Spotify, Stitcher, or your preferred podcast platform. New ep...

This episode addresses one topic taken from our top ten list of most common failed practices from the CMMC & DIBCAC High assessments. 

Today we discuss your CMMC (and DFARS) requirements around Incident response, how to address the problem of limited resources for small and medium-sized businesses, and cover what actually makes a good communications/response plan.

Subscribe to CyberSpin: Apple iTunes, Spotify, Stitche...

This episode addresses one topic taken from our top ten list of most common failed practices from the CMMC & DIBCAC High assessments. 

Logging plays a major role in protecting an organization's CUI and FCI because it detects malicious activity. This episode highlights logging best practices, learned by Redspin, the first Authorized CMMC C3PAO. Rob and Thomas talk through your logging options (to perform them manually,...

This episode addresses one topic taken from our top ten list of most common failed practices from the CMMC & DIBCAC High assessments. 

The documentation episode, where we address some of Redspin's most common questions like: Do I need documentation for every domain? How long should your SSP be? Why do we need documentation, and do we still need it with CMMC 2.0? Listen in as Rob and Thomas walk through the documentati...

Redspin's CMMC experts are back to highlight the recent news announcing the start of joint C3PAO and DIBCAC assessments! During the CMMC AB Townhall on July 26th, 2022 it was announced that the first set of certifications will kick off as a joint surveillance program with C3PAOs and DIBCAC. 

Representing one of the first C3PAOs conducting a joint DIBCAC HIGH assessment, Redspin's Thomas Graham walks us t...

The Cyber AB and the PMO office recently announced that CMMC 2.0 certifications can be conducted, just not under the “CMMC 2.0” title. The certifications will temporarily be called “DIBCAC High certifications” until the rule-making phase is complete. So, what does that mean for organizations seeking certification?

Today Redspin’s CMMC Experts, Dr. Thomas Graham, Rob Teague, and Ross Piper will clarify this process so OSCs understan...

Rob Teague, Dr. Thomas Graham, and special guest Noel Vestal (Compliance Manager at Preveil) join us for this third installment of our "Rumor Control" series to squash the rumors and talk through the challenges surrounding System Security Plans (SSPs).

Listen in as Rob, Thomas, and Noel dive into a fun, yet informative discussion on all things SSP. Also, catch a deeper dive into the subje...

Rob Teague, Dr. Thomas Graham, and Ross Piper join us in this second installment of the Rumor Control series to dive into CMMC CCP training. 

Listen in as Rob, Thomas, and Ross dive into the facts of CMMC  CCP training. They will also walk through recent training announcements that come directly from the CMMC-AB and offer their perspectives and professional insights into whether those of you who want to ...