In this episode of Secure Talk, Justin welcomes Stephen Ferrell, a cybersecurity expert and Chief Strategy Officer of Strike Graph, to discuss the significant changes in the compliance landscape brought about by the Cybersecurity Maturity Model Certification (CMMC). They explore the recent finalization of the CMMC rule, its implications for the defense industrial base, and the phased compliance requirements for various certification levels.
The conversation emphasizes the necessity of CMMC for federal contractors, including those in non-traditional sectors like medical equipment manufacturing, along with the associated costs and procedures. Stephen also shares insights from his experience conducting a self-assessment for CMMC compliance, offering practical advice for organizations aiming to achieve certification.
This episode is essential for cybersecurity professionals who want to understand the latest federal compliance standards and prepare their organizations accordingly.
00:00 Introduction to SecureTalk
00:32 Overview of CMMC Final Rule
01:58 Introducing Steven Ferrell
03:27 Deep Dive into CMMC
10:01 Understanding NIST and CMMC Relationship
13:02 CMMC Compliance Tactics
16:45 Levels of CMMC Certification
21:26 Impact on Various Industries
30:35 Conclusion and Final Thoughts