Regulatory Phishing by Hunton Andrews Kurth LLP

Is the Pentagon Accelerating CMMC Implementation?

In this episode of Regulatory Phishing, Eric Crusius discusses some newer timing issues that have arisen that may require contractors to obtain a CMMC certification earlier than anticipated. Eric discusses new opportunities requiring CMMC, contracting officer discretion to include CMMC in existing contracts and when CMMC is required in the solicitation process.

CMMC Roundtable: Practical Solutions to Your CMMC Questions

After much anticipation, Cybersecurity Maturity Model Certification (CMMC) is here. This webinar featuring speakers from different parts of the ecosystem examines what we see as CMMC rolls out, and how we are helping our clients and others through those issues. They include: * How to identify Controlled Unclassified Information * Organizational culture changes needed for CMMC * Common tools to help companies get compliant * Roadblocks in getting ready for assessments * Common pre-assessment, assessment, and post-assessment issues to consider * The regulatory and False Claims Act risks Attorney Advertising. Case results depend upon a variety of factors unique to each case. Case results do not guarantee or predict a similar result in any future case. Unless otherwise noted, attorneys not certified by the Texas Board of Legal Specialization.

Finding the Right MSP to Manage Your CUI

In this episode of Regulatory Phishing, Eric Crusius [https://www.hunton.com/people/eric-crusius] is joined by Ed Bassett, who is the Chief Cybersecurity Evangelist at NeoSystems and a member of the board of the MSP Collective. Managed Service Providers play a vital role in the protection of CUI assets and choosing the right MSP can be a daunting task. Ed and Eric discuss what companies should look for when choosing an MSP and how an MSP can impact a company's efforts undergo a successful CMMC assessment. Click here to learn more about MSP Collective. [https://www.mspcollective.org/]

The Role of Cloud Service Providers in the CMMC Ecosystem

Michael Greenman from Deltek joins Eric Crusius [https://www.hunton.com/people/eric-crusius] to discuss how cloud service providers (CSPs) have emerged as key players in the cybersecurity compliance landscape. From supporting DFARS 7012, CMMC and ITAR compliance, today's government contracting regulatory frameworks increasingly rely on CSPs to demonstrate FedRAMP Moderate Authorization or Equivalency to reduce risk. This episode explores how CSPs support an organization's compliance journey, with a focus on the shared responsibility model, evidence generation, and the rising demand for independently assessed, secure environments. We also unpack what "FedRAMP Authorized" vs. "FedRAMP Equivalency" really means for contractors working with the Department of Defense, and how CSP partnerships can impact a contractor's ability to win government work under emerging regulations like CMMC. Click here for more about the Deltek Clarity Government Contracting Industry Study [https:/www.deltek.com/en/government-contracting/clarity]

A Closer Look at the CMMC Rollout

The regulations released by the Department of Defense/War roll out the CMMC program over a number of years. In this episode of Regulatory Phishing, we will look at the timing and what it means for the Defense Industrial Base.