In this episode of Regulatory Phishing, Eric Crusius is joined by Ed Bassett, who is the Chief Cybersecurity Evangelist at NeoSystems and a member of the board of the MSP Collective. Managed Service Providers play a vital role in the protection of CUI assets and choosing the right MSP can be a daunting task. Ed and Eric discuss what companies should look for when choosing an MSP and how an MSP can impact a company’s efforts undergo a successful CMMC assessment.

Click here to learn more about MSP Collective.

Michael Greenman from Deltek joins Eric Crusius to discuss how cloud service providers (CSPs) have emerged as key players in the cybersecurity compliance landscape. From supporting DFARS 7012, CMMC and ITAR compliance, today’s government contracting regulatory frameworks increasingly rely on CSPs to demonstrate FedRAMP Moderate Authorization or Equivalency to reduce risk. This episode explores how CSPs support an organization’s compliance journey, with a focus on the shared responsibility model, evidence generation, and the rising demand for independently assessed, secure environments. We also unpack what "FedRAMP Authorized" vs. "FedRAMP Equivalency" really means for contractors working with the Department of Defense, and how CSP partnerships can impact a contractor’s ability to win government work under emerging regulations like CMMC.

Click here for more about the Deltek Clarity Government Contracting Industry Study

The regulations released by the Department of Defense/War roll out the CMMC program over a number of years. In this episode of Regulatory Phishing, we will look at the timing and what it means for the Defense Industrial Base.