エピソード

  • Yet Another False Claims Settlement
    2025/08/14

    Register for Secure The DIB: https://securethedib.us/

    Voluntarily disclose your DFARS cybersecurity noncompliance? That'll be $1.75M, please. This week we're looking at the details of a recent False Claims Act settlement involving a small defense contractor. Turns out that mistaking export controls for cyber controls and relying on the wrong external service providers can controls can cost you a lot of money.

    Pathfinder 101: https://www.summit7.us/pathfinder

    Pathfinder Demo: https://youtu.be/JiDTCchfCa0?si=JJFplxSfvkaRVhRo

    DOJ Settlement: https://www.justice.gov/opa/pr/california-defense-contractor-and-private-equity-firm-agree-pay-175m-resolve-false-claims

    DFARS 7012: https://youtu.be/cy4e28YAkXU?si=KvezY7Vu7zXf9qYZ

    続きを読む 一部表示
    15 分
  • The Summer of CMMC Memos
    2025/08/07

    Register for Secure The DIB: https://www.summit7.us/secure-the-dib-2025

    We can't remember a 30-day stretch in the history of CMMC that had more milestones and memos than July 2025. The ecosystem is closing-in on 300 Level 2 certified companies, mega primes have put everyone on notice, the phased roll-out is weeks away, the secretary of defense, the Army Corps of Engineers, you name it – everybody is gearing up for the big day. This week we're talking about 5 things you might have missed while on summer vacation.

    Pathfinder 101: https://www.summit7.us/pathfinder

    Pathfinder Demo: https://youtu.be/JiDTCchfCa0?si=JJFplxSfvkaRVhRo

    Secure the DIB: https://www.summit7.us/secure-the-dib-2025

    Lockheed Memo: https://youtu.be/gMHWhXhe_Uo?si=FtkziMSqBWfzWAWp

    SECDEF Memo: https://media.defense.gov/2025/Jul/22/2003759081/-1/-1/1/ENHANCING-SECURITY-PROTOCOLS-FOR-THE-DEPARTMENT-OF-DEFENSE.PDF

    48 CFR Progress: https://youtu.be/Q2qeJhA4oIs?si=b1bRqxcR0MbTOWIj

    USACE Notice: https://sam.gov/workspace/contract/opp/0b14a472d53b454ea6bca0893b2647d0/view

    続きを読む 一部表示
    19 分
  • July Cyber AB TH Recap
    2025/07/31

    Register for Secure The DIB: https://www.summit7.us/secure-the-dib-2025

    The Cyber AB brought the CMMC Ecosystem together once again for the July 2025 installment of their monthly Town Hall series. Join us for this week's show as we discuss all the information distributed during the meeting that you need to know; answers to questions like:

    After your assessment, you get 10 days to do what?

    How many CMMC assessments took place in July?

    Does anyone fail their assessment, and do they keep track of them? And so much more... Tune in to find out!

    Secure the DIB: https://www.summit7.us/secure-the-dib-2025

    CMMC Just Crossed A *Huge* Rulemaking Milestone: https://youtu.be/Q2qeJhA4oIs?si=IQ1bYI6jH3VGuxAa

    Pathfinder 101: https://www.summit7.us/pathfinder

    Pathfinder Demo: https://youtu.be/JiDTCchfCa0?si=JJFplxSfvkaRVhRo

    AB Town Halls: https://cyberab.org/News-Events/Town-Halls/Details/march-town-hall

    続きを読む 一部表示
    29 分
  • CMMC Just Crossed A *Huge* Rulemaking Milestone
    2025/07/24

    Register for Secure The DIB: https://www.summit7.us/secure-the-dib-2025

    The final rule that allows DoD to include CMMC requirements in defense contracts and solicitations has officially moved into regulatory review. This is the last milestone before official publication and the start of the CMMC “phased roll-out". Because this final rule simply implements CMMC policy that went into effect in December 2024, we believe CMMC will start showing up in contracts as early as late October.

    Pathfinder 101: https://www.summit7.us/pathfinder

    Pathfinder Demo: https://youtu.be/JiDTCchfCa0?si=JJFplxSfvkaRVhRo

    Secure the DIB: https://www.summit7.us/secure-the-dib-2025

    Self-Assessments/Waivers: https://youtu.be/LTgmrsFGr9s?si=jm7U4s4vQpgvj4J-

    PALT: https://youtu.be/NZs4f5voyrg?si=mjzethgW61SLad7t

    続きを読む 一部表示
    22 分
  • What is DFARS 7009?
    2025/07/17

    Register for Secure The DIB 2025: https://www.summit7.us/secure-the-dib-2025

    When it comes to cyber incident reporting requirements people are always concerned with how well the government will protect a company's breach information. When the DoD overhauled contractor cyber requirements in 2016 to focus on incident reporting they included a clause that specifically addresses those concerns: DFARS 252.204-7009.

    Pathfinder 101: https://www.summit7.us/pathfinder

    Pathfinder Demo: https://youtu.be/JiDTCchfCa0?si=JJFplx

    SfvkaRVhRo

    OPM Data Breach: https://en.wikipedia.org/wiki/Office_of_Personnel_Management_data_breach

    DFARS 7008: https://youtu.be/vgrRGIWboKc?si=g4vc5bKG6Y6G-DDo

    DFARS 7012: https://youtu.be/cy4e28YAkXU?si=ImBm-iI6mh3Xs1sF

    DFARS 7019: https://youtu.be/7gW_82Cus7Y?si=LxB__5jeSuJMoL5C

    DFARS 7020: https://youtu.be/D4JLkfvB-Ws?si=YG6CRn2w7rRv2Ofo

    続きを読む 一部表示
    21 分
  • Lockheed Martin Just Dropped A New CMMC Memo
    2025/07/10

    An industry event for DoD Contractors & Higher Education Institutions: https://www.summit7.us/secure-the-dib-2025

    Lockheed Martin wants their suppliers to know two things. First, suppliers should be fully and confidently compliant with existing DFARS cybersecurity requirements. Second, suppliers should be fully transitioned to the “Cybersecurity Compliance and Risk Assessment” tool. All of this before CMMC ever shows up in contracts. This shouldn't come as a surprise to anyone because this is the 6th CMMC memo from Lockheed in the last 18 months. This week we take a look at each one to see where things are headed (hint: they all say the same thing).

    Pathfinder 101: https://www.summit7.us/pathfinder

    Pathfinder Demo: https://youtu.be/JiDTCchfCa0?si=JJFplxSfvkaRVhRo

    Blog: https://www.summit7.us/blog/lockheed-martin-pushes-suppliers-toward-urgent-cybersecurity-compliance

    Lockheed Memo: https://www.lockheedmartin.com/en-us/suppliers/news/features/2025/cybersecurity-program-rule.html

    Memo Recap: https://youtu.be/IKpH2F259J8?si=qmCyo4Mi57UvMx0g

    DFARS 7012: https://youtu.be/cy4e28YAkXU?si=RJwhoS6NrZJgo9Xj

    DFARS 7012 Class Deviation: https://youtu.be/voziZRAMvv4?si=Pm3mtgR338PE3B7b

    DFARS 7020: https://youtu.be/D4JLkfvB-Ws?si=aa45Tr3_UhtbtH4t

    続きを読む 一部表示
    28 分
  • What is DFARS 7020?
    2025/07/03

    Continuing our back-to-basics series of the “DFARS Cyber Series” of provisions and clauses brings us to clause 252.204-7020. This clause applies to defense contractors who are required to comply with DFARS clause 252.204-7012. Through DFARS 7020 the DoD reserves the right to conduct a higher-level assessment of a contractor's cybersecurity compliance. Additionally, defense contractors must give DoD assessors full access to their facilities, systems, and personnel.

    Pathfinder 101: https://www.summit7.us/pathfinder

    Pathfinder Demo: https://youtu.be/JiDTCchfCa0?si=JJFplxSfvkaRVhRo

    DFARS 7008: https://youtu.be/vgrRGIWboKc?si=g4vc5bKG6Y6G-DDo

    DFARS 7012: https://youtu.be/cy4e28YAkXU?si=ImBm-iI6mh3Xs1sF

    DFARS 7019: https://youtu.be/7gW_82Cus7Y?si=LxB__5jeSuJMoL5C

    続きを読む 一部表示
    25 分
  • June Cyber AB TH Recap
    2025/06/26

    The Cyber AB brought the CMMC Ecosystem together once again for the June 2025 installment of their monthly Town Hall series. Join us for this week's show as we discuss all the information distributed during the meeting that you need to know; answers to questions like:

    Is the Ecosystem growing?

    How many certifications were awarded this month?

    Does Microsoft have to be at my assessment?

    And so much more... Tune in to find out!

    Pathfinder 101: https://www.summit7.us/pathfinder

    Pathfinder Demo: https://youtu.be/JiDTCchfCa0?si=JJFplxSfvkaRVhRo

    AB Town Halls: https://cyberab.org/News-Events/Town-Halls/Details/march-town-hall

    続きを読む 一部表示
    25 分