『Sum IT Up: CMMC News Roundup』のカバーアート

Sum IT Up: CMMC News Roundup

Sum IT Up: CMMC News Roundup

著者: Summit 7
無料で聴く

今ならプレミアムプランが3カ月 月額99円

2026年5月12日まで。4か月目以降は月額1,500円で自動更新します。

概要

It's difficult to keep up with all of the moving parts that make up the Department of Defense's Cybersecurity Maturity Model Certification Program. It's even more difficult to keep up with the relevant bits and bites that influence CMMC. This weekly podcast sums up the news and developments relevant to CMMC; DFARS and other regulations; and NIST standards such as SP 800-171, SP 800-53, the NIST Cybersecurity Framework, and others.

Copyright 2026 by Summit 7 政治・政府 政治学
エピソード
  • NIST 800-171 rev. 3 is Coming ... But Not How You Think

    NIST 800-171 rev. 3 is Coming ... But Not How You Think
    2026/04/16

    NIST SP 800-171 Revision 3 has been out for two years.

    DFARS 252.204-7012 says to use the most current version.

    So why are defense contractors still using Revision 2?

    Because they're supposed to.

    In this episode, we break down the temporary rule that overrides the DFARS clause and keeps the entire ecosystem aligned on Revision 2.

    We cover:

    • What a class deviation actually is and why it matters

    • Why DoD had to pause the shift to Revision 3

    • How CMMC rulemaking controls the transition

    • And when Revision 3 will realistically start showing up in contracts

    Bottom line: contractors aren't behind. The rules haven't changed yet.

    .......

    Register for Summit 7 Live: https://www.summit7.us/s7live

    171r3: https://csrc.nist.gov/pubs/sp/800/171/r3/final

    DFARS 7012 deviation (PDF): https://www.acq.osd.mil/dpap/policy/policyvault/USA001074-24-DPC.pdf

    32 CFR 170: https://www.ecfr.gov/current/title-32/subtitle-A/chapter-I/subchapter-G/part-170

    Class deviation podcast: https://youtu.be/voziZRAMvv4?si=3xHm7I_gIeQTQxLf

    Class deviation press release: https://www.war.gov/News/Releases/Release/Article/3763953/department-of-defense-issues-class-deviation-on-cybersecurity-standards-for-cov/

    続きを読む 一部表示
    21 分
  • CMMC Level 2 Assessment: What to Expect (Insights from 100 assessments)

    CMMC Level 2 Assessment: What to Expect (Insights from 100 assessments)
    2026/04/09

    This week we sit down with a C3PAO who has completed over 100 CMMC Level 2 assessments. We chat cost, timeframe, assessor backlogs and the most common issues facing defense contractors.

    Register for Summit 7 Live: https://www.summit7.us/s7live

    GAO Report (2026): https://www.gao.gov/products/gao-26-107955

    GAO Report (2021): https://www.gao.gov/products/gao-22-104679

    続きを読む 一部表示
    33 分
  • Monthly Cyber AB Town Hall Recap (March)

    Monthly Cyber AB Town Hall Recap (March)
    2026/04/02

    We are back at it again with another rundown of the Cyber AB's monthly town hall and there sure was a lot of valuable information distributed during the meeting. Join us for this episode of we discuss some of the key information dished out this month and weigh on any impact it may have on the CMMC Program.

    Things like:

    • Milestones achieved by the program this month!

    • Why was the new DoW CIO talking to Armed Services committees?

    • How is the ecosystem growing?

    • What to expect in the CAICO transfer to ISACA.

    And so much more...Tune in to find out!

    Cyber AB TH Replay's: https://cyberab.org/News-Events/Town-Hall

    ISACA Website: https://www.isaca.org/

    続きを読む 一部表示
    32 分
まだレビューはありません