Cyberspin
A podcast to help you navigate CMMC.
Episodes
In this June edition of CMMC Connect, Redspin's assessors and consultants cut through the noise on the questions defense contractors are asking right now:
- Why November 10, 2026 is a phase milestone (not a drop dead deadline)
- Wh...
The panel digs into what FIPS 140-2 moving to historical status on September 21, 2026 means for your tech stack, how to tell if your MSP is actually doubling as a CSP, what does and doesn't count as CUI when COTS items and PII (CUI//SP PRVCY) are in play, whether non US citizens can serve as admins in a GCC High environment, what to do when your SSP sa...
In this April edition of CMMC Connect, Redspin's assessors and consultants take on the questions defense contractors are asking most right now.
The panel digs into whether OSCs in the middle of a Level 2 assessment can keep working as subs on prime contracts, when NIST 80...
What are organizations getting wrong when it comes to CMMC? In this replay of March’s CMMC Connect, Redspin’s assessors break down the real-world questions organizations are asking right now, from Rev. 2 vs. Rev. 3 implications to scoping decisions, shared environments, and what truly changes when you add systems into your boundary.
We cover what happens after certification, how to think about inherited controls and mic...
How did this much happen in just 30 days?
In this replay episode of February's CMMC Connect, we break down the latest DFARS Class Deviations, GSA’s new “CMMC-like” program, key takeaways from the Cyber AB Town Hall, and the biggest questions shaping the CMMC landscape right now.
We cover why mock assessments can’t convert to formal certifications, why documentation is everything, how contract requirements dr...
CMMC is moving fast, and the questions from the DIB are getting more specific...
In this January 2026 replay of Redspin's live CMMC Connect, our CMMC Certified Assessors (CCAs) unpack the latest updates from the field and answer real-world questions OSCs are facing as CMMC Level 2 assessments ramp up. This episode (literally) covers:
-
Recent DoD CMMC FAQ updates and what they clarify (and don’t)
-
ISACA’s new role ...
In this holiday edition of CMMC Connect, the Redspin team wraps up a busy year by tackling real questions from the Defense Industrial Base, sharing practical best practices, and looking ahead to what 2026 may bring for CMMC. From lessons learned in the field to what contractors should be thinking about next, this session covers a wide range of timely topics — with a little holiday fun mixed in.
We also share what’s new ...
Phase 1 of CMMC is officially here, and this month’s CMMC Connect dives straight into what contractors are experiencing on the ground. Redspin’s panel of CCAs break down the newest DoD updates, rising assessment backlogs (or is it rising false-starts?), early Level 2 contract requirements, and the most common “not met” trends they’re seeing in real assessments.
They also unpack key findings from Redspi...
In this special Halloween edition of CMMC Connect, the Redspin team swapped their suits for costumes and dove into what’s next as CMMC Phase 1 officially begins on November 10.
Join Dr. Thomas Graham, Jeremy Mares, Rob Teague, and Phil Conrad, hosted by Lauren Frickle, as they unpack:
-
Why November 10 marks the start of CMMC, not the finish line
-
What to do before the rollout — including updating your SPRS scores
...
CMMC timelines, DFARS 7025, FedRAMP CRM responsibilities, interim compliance signals, and what’s next for NIST 800-171 Rev. 3, our team of CMMC Certified Assessors (CCAs) covered the hottest questions the DIB is asking right now. If you’re aiming for Level 2 or fielding customer requests for proof of certification in Phase 1, this conversation is your quick-hit guide to what matters most.
The long-awaited final 48 CFR DFARS 7021 rule has dropped, and CMMC is officially headed into contracts. In this special live call-in edition of Cyberspin, the Redspin team gives their quick breakdown to the finalized rule before answering audience questions on everything from SSO/MFA and joint ventures to whether small contractors can realistically achieve Level 2 certification. We also dive into separation of duties, prime pressu...
In this live CMMC Connect session, Redspin’s experts tackle audience questions head-on: How soon after 48 CFR finalization will CMMC Level 2 show up in contracts? What’s the best way to secure printers in hybrid work environments? And what happens when CMMC shortfalls trigger False Claims Act investigations? Tune in for real-world answers, practical tips, and a candid look at the signals DoD contractors can’t affo...
In this episode, we unpack one of the most common questions in the CMMC space: What actually triggers a reassessment? From changes in CUI flow to infrastructure shifts and company acquisitions, we break down when you might need to re-certify—and what’s still awaiting clarity from the DoD.
We also share lessons learned from the field, including common missteps organizations are making in cloud environments. Misconfigured...
Big moves in CMMC rulemaking are happening, and the signals from DoD leadership are loud and clear. In this episode, we break down the recent milestone that sent 48 CFR to OIRA for final review, the critical July 18th memo from THEE Secretary of Defense, and what it all means for the Defense Industrial Base. We’ll talk terminology ("effective" vs. "enforceable"), and timelines for contractors.
Subscribe to Cyberspin on ...
In this CMMC Connect replay episode, we dive into the most pressing questions facing the Defense Industrial Base right now. Kicking things off with a state-of-the-ecosystem update, our panel tackles the big-ticket items—how much CMMC actually costs, where we are in the implementation timeline, and how many assessments have already been completed. We also break down the current stats on authorized C3PAOs and certified professi...
This month, our expert panel tackles the real-world challenges of CMMC compliance, from getting started and surviving assessments to sustaining success. We break down training must-haves, insider threat risks, MFA requirements, retroactive CUI headaches, and how tools like VDI and FedRAMP fit into your strategy. Tune in for practical tips, pitfalls to avoid, and audience Q&A that dives into the details you actually care about.
...With headlines swirling about the new DoD nominee reviewing 48 CFR( the rule that puts CMMC in contracts), is CMMC on the chopping block? Rob Teague, Dr. Thomas Graham, and special guest David Bailey break down the headlines and clear up the confusion.
Subscribe to Cyberspin on Apple iTunes, Spotify, or your preferred podcast platform. You can always stream the latest episodes at redspin.com.
- Preparing for CMMC assessments
- The implications of using AI in compliance
- Requirements for cloud services.
The session also addresses common questions regarding vulnerability data, SPRS compliance, and th...
Popular Podcasts
If you've ever wanted to know about champagne, satanism, the Stonewall Uprising, chaos theory, LSD, El Nino, true crime and Rosa Parks, then look no further. Josh and Chuck have you covered.
Current and classic episodes, featuring compelling true-crime mysteries, powerful documentaries and in-depth investigations. Follow now to get the latest episodes of Dateline NBC completely free, or subscribe to Dateline Premium for ad-free listening and exclusive bonus content: DatelinePremium.com
The latest news in 4 minutes updated every hour, every day.
Emergency Intercom is a comedy podcast by Enya Umanzor and Drew Phillips. There is no emergency, but there is an intense need for attention, so maybe listen up… You don’t want to know what happens if you don’t. (we will be violent)
Does hearing about a true crime case always leave you scouring the internet for the truth behind the story? Dive into your next mystery with Crime Junkie. Every Monday, join your host Ashley Flowers as she unravels all the details of infamous and underreported true crime cases with her best friend Brit Prawat. From cold cases to missing persons and heroes in our community who seek justice, Crime Junkie is your destination for theories and stories you won’t hear anywhere else. Whether you're a seasoned true crime enthusiast or new to the genre, you'll find yourself on the edge of your seat awaiting a new episode every Monday. If you can never get enough true crime... Congratulations, you’ve found your people. Follow to join a community of Crime Junkies! Crime Junkie is presented by Audiochuck Media Company.