Skip to main content
ISC2 Security Congress 2025 Main banner
 
Icon Legend
Additional Fee Required
Additional Fee Required
Pre-Registration Required
Pre-Registration Required
Onsite & Virtual
Onsite & Virtual
Onsite Only
Onsite Only
Earn CPE Credits
Earn CPE Credits
Livestreamed Session
Livestreamed Session
Included in Guest Pass
Included in Guest Pass
Session Recorded
Session Recorded
Student Experience
Student Experience

Call for Papers Proposals

Frameworks, Standards and Guidelines

Cybersecurity Maturity Model Certification: Tales from the Trenches

Tuesday, October 28, 2025
10:20 AM - 11:20 AM CT
Location: Volunteer B
CPE Credits 1
Onsite & Virtual Earn CPE Credits Livestreamed Session Session Recorded
This session will focus on the new Federal Controlled Unclassified Information (CUI) Cybersecurity standards providing an overview and pitfalls from actual assessments. Covering NIST 800-171 and specific objective evidentiary requirements, this session will cut through rumors and provide actionable, credible, insight into what is required by organizations that support the Federal Government. Specific examples will be provided from assessments and identify where organizations fell short as well as best practices that allowed these organizations to pass the new standard. Highlighting items that are most commonly “Not Met” to include rationale used, this session will equip organizations to equate standard requirements with operational parameters.

Learning Objectives:

  • Implement actionable strategies to meet compliance and business objectives
  • Describe the key components of the Cybersecurity Maturity Model Certification (CMMC) and its implications for contracting organizations
  • Identify shortcomings and describe key objectives of the standard