エピソード

  • Is This the End of CMMC?
    2024/11/21

    A Joint Resolution of Disapproval has been submitted to disapprove the 32 CFR CMMC final rule. Is this the end of CMMC as we know it? Or, as is usually the case, has the ecosystem jumped to conclusions and let their confirmation bias get the better of them? This week we go deep into the Congressional Review Act and why there's much more to the story of Representative Palmer's resolution.

    Pathfinder 101: https://www.summit7.us/pathfinder

    Pathfinder Demo: https://youtu.be/JiDTCchfCa0?si=JJFplxSfvkaRVhRo

    32 CFR CMMC Webinar: https://www.summit7.us/webinars/cmmc-32-cfr-final-rule

    Palmer's Resolution: https://www.congress.gov/bill/118th-congress/house-joint-resolution/221/text

    GAO Report on the CMMC final rule: https://www.gao.gov/products/b-336776

    続きを読む 一部表示
    51 分
  • CMMC In Contracts Summer 2025?
    2024/11/14

    CMMC Pathfinder Tool | In 5 minutes or less, this free tool will give you a clear path from where you are now to CMMC confidence: https://www.summit7.us/pathfinder

    Start working on that beach body of evidence because all signs point to CMMC showing up in defense contracts in Summer 2025. Turns out that our Summer estimate is more conservative than government estimates. However, if you're a subcontractor then it doesn't matter much because the big primes are already telling people what time it is.

    Pathfinder Demo: https://youtu.be/JiDTCchfCa0?si=JJFplxSfvkaRVhRo

    32 CFR CMMC Webinar: https://www.summit7.us/webinars/cmmc-32-cfr-final-rule

    SBA Blog: https://advocacy.sba.gov/2024/10/24/dod-final-cmmc-rule/

    32 CFR Final Rule: https://www.federalregister.gov/documents/2024/10/15/2024-22905/cybersecurity-maturity-model-certification-cmmc-program

    続きを読む 一部表示
    18 分
  • Certificate vs Certification
    2024/11/07

    CMMC Pathfinder Tool | In 5 minutes or less, this free tool will give you a clear path from where you are now to CMMC confidence: https://www.summit7.us/pathfinder

    As a result of the 32 CFR Final CMMC rule, many organizations will be looking for help comprehending and implementing the imposed requirements. On this episode of the show, Jason and Joy dig into the differences between the Registered Practitioner (RP) certificate, and the Certified CMMC Professional (CCP) certification to highlight the value of the trainings for OSAs and ESP, and point out the importance of due dillegence above all!

    [Webinar] CMMC Finalized: The 32 CFR CMMC Final Rule | Register Now: https://www.summit7.us/webinars/cmmc-32-cfr-final-rule

    SPRS Scoring Webinar with Koren Wise - https://us06web.zoom.us/meeting/register/tZIoceihrTgoEtIS5scNKD_VWYB5IvLdYjSq

    続きを読む 一部表示
    41 分
  • October Cyber AB Town Hall Recap
    2024/10/31

    [Webinar] CMMC Finalized: The 32 CFR CMMC Final Rule | Register Now: https://www.summit7.us/webinars/cmmc-32-cfr-final-rule

    The Cyber AB Townhall for the Month of October is the First TH since the publishing of the 32 CFR Final CMMC rule. On this episode of the show, Jason and Joy dig into the information distributed during the Townhall surrounding the re-authorization of C3PAOs and the eligibility of CMMC Certified Assesors (CCA).

    CMMC Pathfinder Tool: https://www.summit7.us/pathfinder

    続きを読む 一部表示
    23 分
  • The FAR CUI Rule: Back from the Dead
    2024/10/24

    [Webinar] CMMC Finalized: The 32 CFR CMMC Final Rule | Register Now: https://www.summit7.us/webinars/cmmc-32-cfr-final-rule

    After years of waiting the FAR CUI rule has cleared regulatory review and we should see the proposed rule published in just a few weeks. In this episode we briefly cover the history of the FAR CUI rule and discuss what we know about it (and what we think we know).

    The FAR CUI rule review page: https://www.reginfo.gov/public/do/eoDetails?rrid=539461

    CMMC Pathfinder Tool: https://www.summit7.us/pathfinder

    続きを読む 一部表示
    22 分
  • Beyond the Scope of the CMMC Final Rule
    2024/10/17

    CMMC Pathfinder Tool | In 5 minutes or less, this free tool will give you a clear path from where you are now to CMMC confidence: https://www.summit7.us/pathfinder

    The 32 CFR CMMC final rule is finally final! It's also 470 pages long. What gives? Public comment responses. Literally just 230 pages of responses to public comments. While some of the responses are helpful, much of the time DoD was forced to take the time and space to explain why comments weren't relevant to the CMMC program at all.

    Final Rule Webinar: https://www.summit7.us/webinars/cmmc-32-cfr-final-rule

    Effective Comments How To: https://youtu.be/1T_62cYiUA4?feature=shared

    Pathfinder Demo: https://youtu.be/JiDTCchfCa0?feature=shared

    続きを読む 一部表示
    23 分
  • Contractor Cybersecurity Isn’t Improving
    2024/10/10

    CMMC Pathfinder Tool | In 5 minutes or less, this free tool will give you a clear path from where you are now to CMMC confidence: https://www.summit7.us/pathfinder

    Yet another report analyzing defense contractor cybersecurity and compliance with DFARS contract clauses has found that adoption remains low. Even when companies are aware of their obligations, believe that CMMC will happen in 2024, and support minimum requirements there is no guarantee that implementation will happen. This week we dive into why that might be.

    続きを読む 一部表示
    18 分
  • CMMC Self-Assessment Tools
    2024/10/03

    CMMC Pathfinder Tool | In 5 minutes or less, this free tool will give you a clear path from where you are now to CMMC confidence: https://www.summit7.us/pathfinder

    Calculating a self-assessment score is a fundamental part of complying with DoD cyber regulations. Unfortunately, Project Spectrum, the resource that DoD recommends more than any other no longer calculates an “SPRS score”. In this episode we briefly explain the requirement to self-assessment, the basics of calculating a score, and a little-known tool from DoD that can help.

    Summit 7 Pathfinder Tool: https://www.summit7.us/pathfinder

    Fuzzy Math (2021): https://youtu.be/843K3hkLquk

    Project Spectrum: https://www.projectspectrum.io/#/

    DIBCAC: https://www.dcma.mil/DIBCAC/

    DoDAM (PDF): https://www.acq.osd.mil/asda/dpc/cp/cyber/docs/safeguarding/NIST-SP-800-171-Assessment-Methodology-Version-1.2.1-6.24.2020.pdf

    CMMC Scoring: https://www.federalregister.gov/d/2023-27280/p-1429

    CMMC False Starts: https://youtu.be/zwU4u86L_5A?

    続きを読む 一部表示
    28 分