As the CMMC Churns | Tips about FIPS Part 1
Has 3.13.11, the use of FIPS validated encryption, sent your organization through the Seven Stages of CMMC Grief? Does the use of FIPS validated encryption have you befuddled? FIPS is confusion and complicated. [...]
DIBCAC Gaps
Did you know the Defense Industrial Based Cybersecurity Assessment Center (DIBCAC) posted slides about what NIST SP 800-171 requirements were "Other Than Satisfied"? In this episode of As the CMMC Churns we will [...]
As the CMMC Churns | Apple MacOS and CMMC
Does your business use Apple MacOS devices? Do you also have to implement NIST SP 800-171 and be CMMC accredited? Good news!!! Apple MacOS devices can be setup to fulfill NIST SP 800-171 [...]
As the CMMC Churns | Documenting Your Scope
Are looking to understand how to document your SSP? How does the NIST SP 800-171 Scope of Applicability and CMMC Assessment Scope fit in the SSP? In this "At the CMMC Churns," we [...]
As the CMMC Churns | Security Tactics for NIST SP 800-171 & CMMC “Specialized Assets”
Does your business have CMMC-defined "Specialized Assets"? Are you struggling to determine how to apply NIST SP 800-171 requirements to them? In this "As the CMMC Churns," we take a look at "Specialized [...]
As the CMMC Churns | Acquisition 101 and the CMMC Rule… [Update #1]
How will the changes to the CMMC Rule going final affect your business? This special edition of As the CMMC Churns will help to clarify. Matt Titcombe, the CEO of Peak InfoSec will [...]
As the CMMC Churns | To Enclave or not to Enclave, that is the question
"To Enclave or not to Enclave, that is the question…" In this "As the CMMC Churns," we look into "enclaving." We also look into the most common pitfalls businesses do when making an [...]
As the CMMC Churns | ‘Twas The Night Before the Final Rule Drop
A special fireside reading of “’Twas the Night Before Final Rule Drop.” Upcoming "As the CMMC Churns" Episodes: 5 Jan Enterprise or enclave 12 Jan OT & IIOT Security for CMMC 19 Jan [...]
As the CMMC Churns | Implementing CMMC Myth Busted!
Time to do some more debunking. There is a belief that Defense Industrial Base contractors need to implement the Cybersecurity Maturity Model Certification (CMMC). Au contraire. Aside from being the name of a [...]
As the CMMC Churns | The Three Descoping Methods
Three. Three. Yes, Three Descoping methods to take components out of your NIST SP 800-171 Scope of Applicability. “But Matt, there are only two isolation techniques listed in NIST SP 800-171 para 1.1” [...]
As the CMMC Churns | How to apply the NIST SP 800-171 Scope of Applicability
Struggling to figure out what is in scope for NIST SP 800-171 and CMMC? Building on the Scope Confusion episodes and our “NIST SP 800-171 and CMMC Level 2 Assessment Scoping Infographic Whitepaper,” [...]
As the CMMC Churns | CMMC Training on the Cheap for SMBs
As the CMMC Churns goes live!! This episode is "SMB Ways to meet CMMC Training Requirements" Are you a small business leader who needs to meet CMMC training requirements and your budget is [...]
As the CMMC Churns – The CMMC Seven Stages of Grief
Is your organization stuck in the CMMC Seven Stages of Grief? Sadly, the malady is not sarcasm to get you to watch this video. Just as individuals grieve during a personal loss, [...]
As the CMMC Churns | Managed Service Provider Ghost Stories
Welcome to the Halloween edition of As the CMMC Churns. In this edition we will regale the watched with real world ghost stories that drove their client, an Organization Seeking Certification, into non-compliance [...]
How much is a CMMC Conformity Assessment going to cost???
"How much is a CMMC Conformity Assessment going to cost???" The foremost favorite question every Organization Seeking Compliance (OSC) is asking CMMC 3rd Party Assessor Organizations (C3PAO) right now. While this episode won't [...]
As the CMMC Churns: Procedure Myths Busted & Quarter Pounders???
Is your business struggling to implement procedures for Cybersecurity Maturity Model Certification (CMMC)? Is your business chasing procedures for everything because of perceived compliance requirements coming from CMMC, NIST SP 800-171, and NIST [...]
As the CMMC Churns: The Little CMMC Engine that Could
Are you struggling to get through Remediation Pass and over Conformity Hill? Well, today's story from As the CMMC Churns is all about "the Little CMMC Engine that Could." It is a classic [...]
As the CMMC Churns: Finger Pointing and the Customer Responsibility Matrix (CRM)
Did you know your need a CRM for your CMMC Conformity Assessment? No, not a Customer Responsibility Management application--you need a Customer Responsibility Matrix (CRM). If you don't know: What a CRM is? [...]
As the CMMC Churns and the Quest for the Lost Families of NIST
Are you ready to go on a CMMC Quest? We will be looking for the lost Families of NIST. A whirlwind tour through NIST SP 800-171 Appendix E, Tailoring. While not as exciting [...]
As the CMMC Churns: Good, Fast, or Cheap. Pick one, Punk!
So many Defense Industry organizations are making critical and costly errors. Are you? They fail to recognize the fundamental acquisition relationship between Good, Fast, or Cheap when it comes to implementing NISR SP [...]
As the CMMC Churns: Moving the Pentagon
Did you know you have enough leverage to move the Pentagon? Is your Program Office and Contracting Officer not providing your organization guidance on CUI? While you may not have enough leverage to [...]
As the CMMC Churns: Scope Confusion (Part 2)
Are you confused about the CMMC Assessment Scope and how to apply it to your business? Do you think you don’t have to apply NIST SP 800-171 requirements to Contractor Risk Managed or [...]
As the CMMC Churns: Scope Confusion (Part 1)
Is your organization confused about where to apply NIST SP 800-171 requirements? How does the DoD's CMMC Assessment Guide in? This entry into As the CMMC Churns is the 1st part in a [...]
As the CMMC Churns: 800-171A Sentences
Is your organization struggling with applying NIST SP 800-171A Assessment Objectives? This vlog builds on our previous one on Assessment Objective verbs (highly recommend watching that one first). In this we look at [...]
As the CMMC Churns: Verbs
Verbs???? Verbs are incredibly important to successfully pass a CMMC certification event. In this video, we break down verbs that affect how you shape your organization against those that you need to implement. [...]
Social Contact