CyberSpin

The DoD has issued a long-awaited statement regarding updates to its Cybersecurity Maturity Model Certification (CMMC) program, and this newly announced CMMC 2.0 program has some indicated changes... In November 2021, Redspin joined forces with our friends over at PreVeil for a webinar titled "CMMC 2.0’s Impact on SMBs" that covered how SMBs should prepare for 2.0 , approaches for managing CUI, and how SMBs should get ready for DIBCAC and C3PAO audits. In this episode of CyberSpin, the...

Carrie Mulcahy, VP of Marketing at Redspin provides non-I.T. insight into what goes on during a CMMC Level 3 assessment interview. She talks with Dr. Thomas Graham about her role as well as the marketing department’s involvement in helping Redspin pass a CMMC Level 3 assessment to become the first C3PAO. Subscribe to CyberSpin: Apple iTunes, Spotify, Stitcher, or your preferred podcast platform. New episodes are released every other week and a transcript of each episode can be found at...

If you're an Organization Seeking Certification (OSC), want to become a CMMC Certified Assessor, or want to become a Certified CMMC Professional (CCP) for resource and guidance purposes start by listening to this episode on Redspin's new Cybersecurity Maturity Model Certification (CMMC) Licensed Training. Redspin, the first organization to successfully pass a CMMC Level 3 assessment is now an approved Licensed Training Partner (LTP) and in this episode Robert Teague (Redspin Manager of CMMC...

Redspin's CISO and CMMC Registered Practioner Dr. Thomas Graham, and CMMC Provisional Assessor Tony Buenger share a third lesson Redspin learned while going through the CMMC Level 3 assessment process before becoming an Authorized C3PAO. Thomas and Tony introduce "Lesson 4: Ongoing Cyber Hygiene". Subscribe to CyberSpin: Apple iTunes, Spotify, Stitcher, or your preferred podcast platform. New episodes are released every other week and a transcript of each episode can be found at...

Redspin's CISO and CMMC Registered Practioner Dr. Thomas Graham, and CMMC Provisional Assessor Tony Buenger share a third lesson Redspin learned while going through the CMMC Level 3 assessment process before becoming an Authorized C3PAO. In this episode, Thomas and Tony introduce "Lesson 3: Coaching the Team and discuss the important role departmental leaders outside of I.T need to play during a CMMC assessment. Subscribe to CyberSpin: Apple iTunes, Spotify, Stitcher, or your preferred...

Redspin's CISO and CMMC Registered Practioner Dr. Thomas Graham, and CMMC Provisional Assessor Tony Buenger share the second of four lessons Redspin learned while going through the CMMC Level 3 assessment process before becoming an Authorized C3PAO. Thomas and Tony introduce "Lesson 2: Practice and Process Readiness", and chat about how having a completed SSP, responsibility matrix, and set of policies and procedures will help you in your Level 1 or Level 3 CMMC assessment. Subscribe to...

Redspin's CISO and CMMC Registered Practioner Dr. Thomas Graham, and CMMC Provisional Assessor Tony Buenger share the first of four lessons Redspin learned while going through the CMMC Level 3 assessment process before becoming an Authorized C3PAO. Thomas and Tony introduce "Lesson 1: Corralling Your CUI", and dive into the details of how knowing where your organization's CUI lives and breathes will not only help you pass a CMMC Level 3 assessment, but ensure you are protecting your data,...

In this episode, we introduce CMMC-Spin a bi-weekly feature that delivers CMMC content directly to your inbox. Redspin's CISO, Dr. Thomas Graham, CMMC Sales Director Jeremy Mares, and CMMC Provisional Assessor Tony Buenger chat with us about how to stay current with the evolving CMMC news and updates, talk about their advice around documentation and training, and wrap up the episode with a briefing on GCC-H/VDI and creating a secure enclave in preparation for a CMMC assessment. Sign up...

We are shifting gears away from CMMC content this week and bring you an episode focused on the ever-exciting topic that is pen-testing. Ben Denkers of Redspin and Patrick Guay of Pcysys join us this week to discuss Redspin's continuous pen-testing capabilities. Learn about automated pen-tests that continuously conduct ethical exploits and deliver prioritized threat-based weaknesses. Subscribe to CyberSpin: Apple iTunes, Spotify, Stitcher, or your preferred podcast platform. New episodes are...

In this episode, get to know a few of our diverse group of CMMC Registered Practitioners, also known as "RPs", many of whom you may already be familiar with as they have been consulting with Redspin’s healthcare division, CynergisTek. Each RP you meet in this episode will give us a glimpse into their professional backgrounds including their involvement in holding various positions with the U.S. Military, and extensive experience working with NIST, FISMA, and other cybersecurity frameworks...

You asked the questions and in this episode, we answer them! This week, Tony Buenger responds to audience questions that were asked during March 25th, 2021's "Maneuvering Through The Minefield of CMMC Webinar". If you have questions of your own, that you would like to submit for Tony to answer on air, please send them to tony@redspin.com and we will try to address them on our next Q&A episode. Subscribe to CyberSpin: Apple iTunes, Spotify, Stitcher, or your preferred podcast platform. New...

In this episode, we get to know Rob Teague, CMMC Registered Practioner at Redspin, and Information Security Consultant for CynergisTek. Listen as we get to know Rob's perspective on the industry, what inspires him, and how his military background ties into all aspects of his professional and personal life. Subscribe to CyberSpin:Apple iTunes, Spotify, Stitcher, or your preferred podcast platform. New episodes are released weekly and a transcript of each episode can be found at redspin.com.

This week, special guest Helve Longoria, the CISO at Florida International University (FIU) joins Tony and Rob on the discussion of FIU needing a CMMC assessment. Together the three discuss what Level of certification FIU will need, and what kept Helve up at night when first finding out about CMMC. >> Do you have CMMC questions of your own? For more CMMC resources and/or to speak with a CMMC advisor directly, click here. Subscribe to CyberSpin: Apple iTunes, Spotify, Stitcher, or your...

In this episode, we feature Tony Buenger to discuss his journey from an Air Force ROTC scholarship that turned into 22 years of Air Force service, to his multiple information security/cybersecurity leadership roles which ultimately led him to the Redspin team. All of this while producing music videos and running a recording studio on the side. Listen as we get to know Tony's passion for what he does and understand what cybersecurity, compliance, and privacy mean to him. Subscribe to...

CMMC Provisional Assessor Tony Buenger, and CMMC Registered Practitioner Robert Teague are back with us this week to chat about Redspin's CMMC consulting service. Together, Tony and Robert outline what is included with CMMC consulting and what a consulting client would walk away with. As Tony puts it, a CMMC assessment is the ultimate test, and Redspin's CMMC consulting service is like studying for that test with a tutor. Subscribe to CyberSpin: Apple iTunes, Spotify, Stitcher, or your...

In last week’s episode, we gave a high level overview of all things CMMC. Dave, Tony, and Robert discussed their CMMC related rolls, walked through the different levels of CMMC certification, and touched on how organizations can prepare. This week we deep dive into Redspin’s CMMC Gap Assessment. As a fly on the wall, listen to CynergisTek’s Director of Security Services Dave Bailey walk through a CMMC gap assessment with Redspin’s CMMC Provisional Assessor Tony Buenger and Registered...

CynergisTek’s Director of Security Services, Dave Bailey sits down with Capability Maturity Model Certification (CMMC) Certified Provisional Assessor Tony Buenger, and CMMC Registered Practitioner Robert Teague of Redspin, a division of CynergisTek. Together the group discusses Redspin’s unique position as one of the first 20 organizations accredited as a C3PAO for the DoD, and talk all things CMMC from who needs certification, what certification means, and who can perform a CMMC...