Wednesday 9th February 2022, 5PM GMT / 11AM CST
This session will run through the new CMMC 2.0, as well as hints and tips on how to achieve and maintain compliance.
The 6 key discussion points for the session are:
- What is the CMMC 2.0?
- Practical changes associated with the release of CMMC 2.0
- Tracking instances of non-compliance with POA&Ms
- What to expect with self-attestations for CMMC
- What to expect with third-party assessments for CMMC
- Expected evidence requirements for CMMC 2.0
Craig is responsible for SureCloud’s Risk Advisory Practice including engagement scoping, consultancy delivery and client relationships. Craig was most recently part of the senior delivery team within a global cyber security consultancy, responsible for leading and delivering complex cyber security solutions aligned to strategic business objectives. Craig has broad cyber security experience including a strong technical, software development and project management background, with particular strengths in the areas of information risk management, PCI DSS, strategic planning and business auditing. Craig is a certified CISSP, Lead Auditor and PCI DSS QSA.
Tom Cornelius currently serves as both the Senior Partner at ComplianceForge and Senior Director at the Secure Controls Framework (SCF) Council. The SCF was founded as a way to provide a free cybersecurity and privacy meta-framework that businesses can use to help become both secure and compliant. He believes in knowledge being half the battle for organizations in grappling with cybersecurity and data protection issues, where the SCF can be a crucial tool for an organization to clearly understand its necessary controls, based on its applicable statutory, regulatory and contractual obligations.
Risk Advisory Senior Director
Founder & Contributor at Secure Controls Framework (SCF)