In this episode Jacob and Jason dive into the September 2022 Cyber AB Town Hall including their takeaways on the new Cybersecurity Assessor and Instructor Certification Organization ("CAICO"); the Certified CMMC Professional (CCP) beta exam; and recent assessment data provided by Nick Delrosso of the Defense Contract Management Agency's (DCMA) Defense Industrial Base Cyber Assessment Center (DIBCAC). Jason discusses the relevance of a new alert from the Cybersecurity & Infrastructure Security Agency (CISA) to DIBCAC "medium" assessment results. Jacob discusses initial takeaways from the pre-draft public comments submitted ahead of NIST SP 800-171 revision 3 and their implications for federal contractors and DoD's CMMC program moving forward. Takeaways from recent industry events in September are discussed. The hosts wrap up by taking a look at the implications of a recent GAO report on the National Nuclear Security Adminstration's lack of supply chain oversight and assurance and the CMMC Easter egg buried in the report.
Episode Links:
Sep 22 Cyber AB Town Hall: https://cyberab.org/News-Events/Town-halls
CISA Alert: https://www.cisa.gov/uscert/ncas/alerts/aa22-277a
NIST SP 800-171r3 Pre-Draft Comments: https://csrc.nist.gov/Projects/protecting-controlled-unclassified-information/call-for-comments
National Cyber Summit: https://www.nationalcybersummit.com/Home
Navy Gold Coast: https://www.navygoldcoast.org/
GAO Report: https://www.gao.gov/products/gao-22-104810