PreVeil + AWS 2024 CMMC Summit

The 2024 CMMC Summit provides viewers with insights from industry leaders, actionable strategies to get started on their compliance journey and success stories on achieving compliance. Start your education by

The CMMC Final Rule is here. No more changes can be made to the rule & it’s poised to enter contracts in Q1. In this Keynote, leading cyber lawyer Robert Metzger addressed the legal implications for defense contractors of CMMC’s status

This session offers a comprehensive overview of the latest updates to the CMMC program. Leading C3PAOs Redspin and Schellman explore key changes to the program and provided a detailed timeline of what defense contractors can anticipate in the coming months.

This session explored the strategies Prime contractors are employing to ensure CMMC compliance among their subcontractors. We spoke with CISOs from leading Primes BAE Systems and Leidos to examine the efforts they are taking to assist subcontractors in achieving compliance.

In this session, Redspin’s Thomas Graham and Sentar’s Stephen Pratt provide a clear actionable 10-step pathway to achieving compliance. Thomas and Stephen also provide insights highlighting critical elements of the compliance journey and what they prioritize during evaluations.

In this session, Dr. Ron Ross breaks down why the National Institute of Standards and Technology created the NIST 800-171 standard and how it’s evolving over time. He also describes the current threat landscape and how NIST is evolving with it.

In this conversation with Dr. Ron Ross, the author of NIST 800-171, breaks down HOW companies can implement the NIST 800-171 standard and how it’s evolving over time.

This session explores the essential technology stack defense contractors require for CMMC compliance. We define what constitutes a tech stack and discuss the critical factors contractors must consider for technologies within their CUI boundary.

This session concentrated on the essential steps contractors must take to develop a robust System Security Plan (SSP) in preparation for a C3PAO assessment. Additionally, we delved into the specific questions C3PAOs typically ask about documentation and discuss common weaknesses they identify during evaluations.

Cost is a major concern for many defense contractors striving for CMMC compliance. In this session, we engage with defense contractors who have successfully passed a JSVA to uncover the strategies they employed to effectively manage compliance costs. Additionally, we hear from C3PAOs about cost-effective practices.

This session showcased Select Group’s successful journey to a perfect score of 110 on their JSVA. The session highlights why Select Group chose PreVeil as the best fit for their specific needs and how it simplified their compliance efforts. Additionally, we heard from their C3PAO, Forvis, about the assessment experience.

This session addressed the significant challenges of using cloud services for exchanging ITAR-regulated data. The session explored the Carve-Out rule, focusing on how PreVeil leverages this regulation through end-to-end encryption, FIPS 140-2 compliance, and the elimination of third-party access, ensuring robust ITAR compliance.

In this session, we speak to the VP of Technology at Virginia Tech’s Applied Research Corporation about the challenges higher education is facing with CMMC as well as how their organization is successfully navigating compliance.

This session explores how Managed Service Providers (MSPs) and Managed Security Service Providers (MSSPs) can facilitate your compliance journey. We discuss the range of services these providers offer and demonstrated how they can not only save you time and money but also significantly reduce your compliance burden.