A Practical Approach to CMMC


June 24, 2020
12:00 pm - 01:00 pm ET

About the Webinar

CMMC Webinar Series

Between 2020 and 2025 every new contract procurement from the U.S. Department of Defense (DoD) will require prime contractors and the subcontractors throughout their supply chains to be independently certified at one of five Cybersecurity Maturity Model Certification (CMMC) levels as a condition of bidding.

The CMMC requirement is intended to address the national security risk from what the DoD considers inadequate security of Controlled Unclassified Information (CUI) that is in place – especially at smaller companies – throughout the defense industrial base (DIB), whether domestic or non-U.S. based.  Currently available tools and processes have not served the industry well enough.

Ankura and the Association for Data and Cyber Governance’s 5-part series will help organizations understand CMMC, including those who may not be sure if CMMC applies to them, such as foreign entities and universities. It will look at how to prepare and what to expect for an audit, and end with a forward look at how CMMC will affect the Federal Civilian Government in the future.

Our speakers include former chief information security, privacy and compliance officers at prime defense contractors, risk management experts, and former law enforcement, intelligence, and national security leaders, who have addressed threats to critical DoD assets, helped develop federal cybersecurity requirements, and understand the security priorities of the U.S. government.

A Practical Approach to CMMC

In this session of the Ankura CMMC series we will take a practical look at the CMMC regulation through the eyes of a defense information security chief, a defense compliance officer, and a defense program manager. Each have lived cybersecurity posture maturity through different lenses and bring varying perspectives – technical, legal, and program management. They will discuss not only how to think about and prepare for your organization’s CMMC certification, but also how compliance with the DFARS 252.204.7012 self-attestation continues to fit into the picture.


Rodney Visser, Director of Cyber & Intel Programs, Scientific Research Corporation