Cyber Talks - Steel Cloud, The Technical Nuts & Bolts of CMMC

Program Executive Office Enterprise Information Systems (PEO EIS), Applied Cyber Technologies (ACT) is pleased to announce the next in a series of CYBER TALKS. The intended audience is government personnel, contractors, SOSSEC Consortium Members, and industry vendors and academia and those interested in working with U.S. Army Cyber Command (ARCYBER) and the Defensive Cyber Operations (DCO) in the cyber domain. This event gives participants the opportunity to collaborate with U.S. Army cyber leaders though interactive engagement and discussion on topics directly related to better understanding DCO and the cyberspace mission. 

PRE-REGISTRATION IS NOT REQUIRED. HOWEVER, EACH PARTICIPANT IS REQUIRED TO SUBMIT THEIR NAME AND COMPANY AFFILIATION ON ENTERING THE WEBEX.  FAILURE TO DO SO MAY RESULT IN BEING DROPPED FROM THE CYBER TALK.

Speaker:  SteelCloud: Brian Hajost, CEO

If you’re in business serving the Department of Defense, you have no doubt heard of and maybe are a little worried about the new Cybersecurity Maturity Model Certification (CMMC) requirement that is becoming a contract mandate for all DoD suppliers.  Without the blessing of a 3rd Party Audit Organization (3PAO) for any one of the five levels of CMMC, your company loses eligibility to bid on all DoD contracts and, if GSA’s STARS III actions are any indication, many civilian contracts as well.  Self-attestation as to your cyber hygiene will soon be a memory.

Much hype, conference presentations and now COVID-friendly Zoom meetings have discussed definitions and the things you may need to do relative to documenting things, preparing manuals, hiring consultants, and passing your first audit.  Not a lot of attention or education has been provided to the actual technical requirements of CMMC, not only for initial certification but to stay compliant, year over year.  In fact, for many, these requirements are still cloaked in mystery.  The CMMC language tells us in general terms to establish a “practice” or “policy” in multiple areas, but what exactly are the best practices to implement for your organization to consistently meet this new mandate with the lightest lift possible?

What you need to know…

This briefing will describe the technical nuts and bolts of CMMC, such as…

• How the DISA STIGs for your endpoints related to CMMC requirements, and ways to simplify that compliance
• What the requirements are for access control and 2-factor authentication?
• What are valid data encryption strategies for CMMC compliance and sustainment?
• What other standards we already comply with apply to my organization and how they relate to CMMC (NIST 800-171, NIST 800-53, etc.)?

SteelCloud has been managing compliance to cybersecurity standards on behalf of Federal agencies for years.  This Cyber Talk will show you how to understand the new CMMC standard, characterize it and learn precisely—section by section--what it means to your company, and provide strategies for simplifying your CMMC compliance plan.

• All attendees will gain access to Steel Cloud’s new eBook, STIGs for Dummies, and several informational crosswalk matrices relating the nuts and bolts of CMMC to other Federal security standards.

Who should attend?

Program managers, development teams, engineers, architects, ISSO's, security managers, security specialists, and system administrators who are eager to learn about DCO platform architectures and modern application development techniques. This event is intended to educate all professionals who support these initiates.

The two-hour session will allow for questions and answers.

Meeting URL: https://sossec.webex.com/webappng/sites/sossec/meeting/download/1800bcaf6bec497ca3504091c0cff667?siteurl=sossec&MTID=m733846fb608f35f361e3c644bc3cf1fe

Meeting password: Forge11

Thursday, October 15, 2020

1:00 pm  |  (UTC-04:00) Eastern Time (US & Canada)  |  2 hrs

Meeting number (access code): 199 552 9978

Join meeting

Join by phone

Tap to call in from a mobile device (attendees only)

+1-415-527-5035,,1995529978## US Toll

Join from a video system or application

Dial 1995529978@sossec.webex.com

Join using Microsoft Lync or Microsoft Skype for Business

Dial 1995529978.sossec@lync.webex.com

Need help? Go to http://help.webex.com