Understanding CMMC Requirements with DefCerts CEO Ryan Bonner | Part 1
02/11/25 • 29 min
In this episode, Mike Shelah, host of the Cyber Savvy Podcast, interviews Ryan Bonner, CEO of DefCerts, for an insightful discussion about cybersecurity and CMMC in government contracting. The conversation explores how cybersecurity has evolved from a luxury to a business necessity, common misconceptions in the industry, and the challenges organizations face in meeting security requirements. Ryan shares valuable insights from his extensive experience in the field and hints at important changes coming in 2025 that will affect government contractors.
Want to hear more? Past episodes are all posted, including on YouTube! Follow and subscribe on your favorite podcast app to ensure you don’t miss out on the conversation!
In this episode, Mike Shelah, host of the Cyber Savvy Podcast, interviews Ryan Bonner, CEO of DefCerts, for an insightful discussion about cybersecurity and CMMC in government contracting. The conversation explores how cybersecurity has evolved from a luxury to a business necessity, common misconceptions in the industry, and the challenges organizations face in meeting security requirements. Ryan shares valuable insights from his extensive experience in the field and hints at important changes coming in 2025 that will affect government contractors.
Want to hear more? Past episodes are all posted, including on YouTube! Follow and subscribe on your favorite podcast app to ensure you don’t miss out on the conversation!
Previous Episode
Building Cyber Resilience with Tasha Cornish | Pt. 2
Join host Mike Shelah and guest Tasha Cornish, Executive Director of Cybersecurity Association, Inc., as they dive into cybersecurity legislation and initiatives planned for 2025.
Tasha discusses their advocacy efforts to expand and modernize the Buy Maryland Cyber Tax Credit, making it more accessible to hospitals, nonprofits, and businesses of all sizes. The conversation explores the financial challenges organizations face in implementing cybersecurity measures, particularly in healthcare settings where margins are tight, and resources limited.
Mike and Tasha also share insights about various cybersecurity frameworks, upcoming events including a CMMC symposium in May 2024, and the association's efforts to build a stronger cybersecurity community in Maryland. Learn about the real costs of cyber-attacks, the importance of proactive security measures, and how businesses can get involved with the Cybersecurity Association's initiatives.
Want to hear more? Past episodes are all posted, including on YouTube! Follow and subscribe on your favorite podcast app to ensure you don’t miss out on the conversation!
Next Episode
Understanding CMMC Requirements with DefCerts CEO Ryan Bonner | Part 2
We’re back with Ryan Bonner for part two of his sit-down with Mike Shelah on DTC’s Cyber Savvy podcast.
In this episode, we breakdown the Cybersecurity Maturity Model Certification (CMMC) and its implications for government contractors. They explore the importance of CMMC, the certification process and the critical role of action plans in achieving compliance. You’ll also hear insights on the challenges companies face during gap assessments and why strategic planning is essential. Plus, they discuss how CMMC could reshape the industry, potentially leading to major consolidation.
Whether you're a contractor navigating compliance or just curious about the future of cybersecurity standards, this episode is packed with valuable takeaways
Key Takeaways:
- CMMC is a mandate that organizations must comply with.
- Plans of action can be misleading and should be approached cautiously.
- Understanding the CMMC certification process is crucial for contractors.
- Organizations need to justify CMMC certification as part of a strategic plan.
- Gap assessments should be conducted iteratively to maintain context.
- Managing bandwidth and resource constraints is essential for compliance.
- Organizations should focus on the areas that handle controlled unclassified information (CUI).
- Consolidation in the industry will require a strategic approach to compliance.
- Documentation and process management are key to maintaining compliance.
- CMMC is about more than just compliance; it should align with business strategy.
Want to hear more? Past episodes are all posted, including on YouTube! Follow and subscribe on your favorite podcast app to ensure you don’t miss out on the conversation!
Cyber Savvy - Understanding CMMC Requirements with DefCerts CEO Ryan Bonner | Part 1
Transcript
Mike Shelah (00:00)
Hello everyone. And welcome to the cyber savvy podcast. am your host, Mike Shelah technology consultant with DTC. And today's episode is powered by DTC to learn more about us. can go to www.dtctoday.com and remember at DTC, make IT work. All right. So I am excited to have our guest on for these next couple episodes.
Mr. Ryan Bonner is the CEO of DefCerts. He is a man that is frankly quite brilliant when it comes to not only cybersecurity, but the CMMC landscape and wh
If you like this episode you’ll love
Episode Comments
Generate a badge
Get a badge for your website that links back to this episode
<a href="https://goodpods.com/podcasts/cyber-savvy-278118/understanding-cmmc-requirements-with-defcerts-ceo-ryan-bonner-part-1-84050165"> <img src="https://storage.googleapis.com/goodpods-images-bucket/badges/generic-badge-1.svg" alt="listen to understanding cmmc requirements with defcerts ceo ryan bonner | part 1 on goodpods" style="width: 225px" /> </a>
Copy