Goodpods logo
Goodpods

Log in

goodpods headphones icon

To access all our features

Open the Goodpods app
Close icon
Cyber Savvy - Understanding CMMC Requirements with DefCerts CEO Ryan Bonner | Part 2

Understanding CMMC Requirements with DefCerts CEO Ryan Bonner | Part 2

02/25/25 • 24 min

Cyber Savvy

Send us a text

We’re back with Ryan Bonner for part two of his sit-down with Mike Shelah on DTC’s Cyber Savvy podcast.

In this episode, we breakdown the Cybersecurity Maturity Model Certification (CMMC) and its implications for government contractors. They explore the importance of CMMC, the certification process and the critical role of action plans in achieving compliance. You’ll also hear insights on the challenges companies face during gap assessments and why strategic planning is essential. Plus, they discuss how CMMC could reshape the industry, potentially leading to major consolidation.

Whether you're a contractor navigating compliance or just curious about the future of cybersecurity standards, this episode is packed with valuable takeaways

Key Takeaways:

  • CMMC is a mandate that organizations must comply with.
  • Plans of action can be misleading and should be approached cautiously.
  • Understanding the CMMC certification process is crucial for contractors.
  • Organizations need to justify CMMC certification as part of a strategic plan.
  • Gap assessments should be conducted iteratively to maintain context.
  • Managing bandwidth and resource constraints is essential for compliance.
  • Organizations should focus on the areas that handle controlled unclassified information (CUI).
  • Consolidation in the industry will require a strategic approach to compliance.
  • Documentation and process management are key to maintaining compliance.
  • CMMC is about more than just compliance; it should align with business strategy.

Want to hear more? Past episodes are all posted, including on YouTube! Follow and subscribe on your favorite podcast app to ensure you don’t miss out on the conversation!

plus icon
bookmark

Send us a text

We’re back with Ryan Bonner for part two of his sit-down with Mike Shelah on DTC’s Cyber Savvy podcast.

In this episode, we breakdown the Cybersecurity Maturity Model Certification (CMMC) and its implications for government contractors. They explore the importance of CMMC, the certification process and the critical role of action plans in achieving compliance. You’ll also hear insights on the challenges companies face during gap assessments and why strategic planning is essential. Plus, they discuss how CMMC could reshape the industry, potentially leading to major consolidation.

Whether you're a contractor navigating compliance or just curious about the future of cybersecurity standards, this episode is packed with valuable takeaways

Key Takeaways:

  • CMMC is a mandate that organizations must comply with.
  • Plans of action can be misleading and should be approached cautiously.
  • Understanding the CMMC certification process is crucial for contractors.
  • Organizations need to justify CMMC certification as part of a strategic plan.
  • Gap assessments should be conducted iteratively to maintain context.
  • Managing bandwidth and resource constraints is essential for compliance.
  • Organizations should focus on the areas that handle controlled unclassified information (CUI).
  • Consolidation in the industry will require a strategic approach to compliance.
  • Documentation and process management are key to maintaining compliance.
  • CMMC is about more than just compliance; it should align with business strategy.

Want to hear more? Past episodes are all posted, including on YouTube! Follow and subscribe on your favorite podcast app to ensure you don’t miss out on the conversation!

Previous Episode

undefined - Understanding CMMC Requirements with DefCerts CEO Ryan Bonner | Part 1

Understanding CMMC Requirements with DefCerts CEO Ryan Bonner | Part 1

Send us a text

In this episode, Mike Shelah, host of the Cyber Savvy Podcast, interviews Ryan Bonner, CEO of DefCerts, for an insightful discussion about cybersecurity and CMMC in government contracting. The conversation explores how cybersecurity has evolved from a luxury to a business necessity, common misconceptions in the industry, and the challenges organizations face in meeting security requirements. Ryan shares valuable insights from his extensive experience in the field and hints at important changes coming in 2025 that will affect government contractors.

Want to hear more? Past episodes are all posted, including on YouTube! Follow and subscribe on your favorite podcast app to ensure you don’t miss out on the conversation!

Next Episode

undefined - The Role of Cyber Insurance in Your Business with Steve Heller | Part 1

The Role of Cyber Insurance in Your Business with Steve Heller | Part 1

Send us a text

In this insightful episode of the Cyber Savvy Podcast, host Mike Shelah welcomes his longtime friend and insurance expert Steven Heller to discuss the critical role of cybersecurity insurance in today's business landscape. As a self-proclaimed "compliance nerd," Mike explores how proper insurance coverage represents the fourth pillar of his cybersecurity framework for businesses.

Steven shares his journey in the insurance industry and provides valuable perspectives on approaching risk management as an investment rather than merely an expense. The conversation touches on how insurance needs evolve alongside business growth, the importance of accurate information in insurance applications, and why proper attestation matters when securing coverage.

Tune in to discover practical insights that could save your business from unexpected financial impacts in an increasingly digital world.

Want to hear more? Past episodes are all posted, including on YouTube! Follow and subscribe on your favorite podcast app to ensure you don’t miss out on the conversation!

Cyber Savvy - Understanding CMMC Requirements with DefCerts CEO Ryan Bonner | Part 2

Transcript

Mike Shelah (00:00)
Hello everybody and welcome to the Cyber Savvy Podcast. I am your host, Mike Schiele, technology consultant with DTC. To learn more about us, go to www.dtctoday.com. And remember at DTC, make IT work. Our guest, Ryan Bonner, wrapped up the last episode with something that I love so much. I'm going to get it printed on a t-shirt and wear it everywhere I go.
Ryan, welcome back to the Cyber Savvy Podcast.
Ryan Bonner (00:33)
Thanks.
Mike Shelah (00:35)
I just

If you like this episode you’ll love
ITSPmagazine Podcasts

ITSPmagazine Podcasts

Joomla Beat Podcast | Web design, development, online marketing, social media & website management

Joomla Beat Podcast | Web design, development, online marketing, social media & website management

Aspen Ideas to Go

Aspen Ideas to Go

Pivot

Pivot

How to Fix Democracy

How to Fix Democracy

Episode Comments

Generate a badge

Get a badge for your website that links back to this episode

Select type & size
Open dropdown icon
share badge image

<a href="https://goodpods.com/podcasts/cyber-savvy-278118/understanding-cmmc-requirements-with-defcerts-ceo-ryan-bonner-part-2-86255877"> <img src="https://storage.googleapis.com/goodpods-images-bucket/badges/generic-badge-1.svg" alt="listen to understanding cmmc requirements with defcerts ceo ryan bonner | part 2 on goodpods" style="width: 225px" /> </a>

Copy