CMMC Disaster: What MSPs Aren't Telling You

Your MSP could be a CMMC disaster. 💥💣💥

I wish I was joking.

In this episode I speak with Joy Beland about the critical role IT Managed Service Providers (MSPs) play in the CMMC space and why so many of them will cause their clients to fail their CMMC assessments.

👉 Here are some of the highlights:

✅ The NEW critical CMMC requirement for MSPs

✅ Why so many MSPs will cause their clients to fail CMMC assessments

✅ Why MSPs SHOULD still get CMMC certified

✅ Questions to ask your MSP to gauge their CMMC readiness

Joy Beland, Vice President of Cybersecurity Compliance at Summit 7, brings over 20 years of experience as a former MSP owner. Summit 7 is a specialized MSP exclusively supporting defense contractors.

If you use an MSP, don't just assume that everything is OK and your MSP has it all covered.

It's highly likely that they do NOT and you'll FAIL your CMMC assessment because of them.

There are some great CMMC-focused MSPs out there, but the majority of MSPs have NO BUSINESS supporting defense contractors.

Choose wisely!

What stood out most to you? Whatever your thoughts are, feel free to let me know in the comments!

Follow Joy on LinkedIn:   / joy-belinda-beland  

Summit 7 website: https://www.summit7.us/

-----------

Thanks to our sponsor Vanta!

Want to save time filling out security questionnaires?

Experience questionnaire automation here: https://vanta.com/grcacademy

-----------

Governance, Risk, and Compliance Academy (GRC) Academy is a training and research platform!

Online GRC Training: https://grcacademy.io/courses/?utm_so...

00:00 Beginning
00:32 Joy's background
02:20 State of MSP security
05:51 SMBs are being targeted
07:03 Why compliance is important for MSPs
08:08 What does it mean for an MSP to be in scope of CMMC?
11:29 Is your MSP ready for CMMC?
16:25 What is a SRM / CRM
20:16 CRM is now REQUIRED for CMMC
22:03 Why MSPs still should get CMMC certified
27:47 How could CUI reach an MSP's environment?
29:50 What is security protection data?
33:28 ESP using a defense contractor's equipment
35:01 CMMC Challenges for MSPs
38:09 Interview questions for an MSP
40:20 The MSP Collective
43:09 Super crazy war stories
47:08 Conclusion

#CMMC #MSP #cybersecurity #informationtechnology