The North Carolina Military Business Center and North Carolina State University’s Secure Computing Institute are teaming up to host a CMMC (Cybersecurity Maturity Model Certification) Implementation Workshop on December 3rd at the McKimmon Conference Center in Raleigh, designed to help North Carolina defense contractors build their cybersecurity programs. The goal is to get as many defense contractors as possible prepared for CMMC so we can keep our current defense contracts and bring more defense contracts into North Carolina. 

If you haven’t started your cybersecurity program yet, are unsure about the next steps, or need expert guidance, don’t feel like you must navigate the CMMC journey alone. Cybersecurity and CMMC experts will guide you through the CMMC and DFARS requirements and help you develop your cybersecurity program. By the end of the day, attendees will know what their next steps are and what resources are available. 

Who Should Attend

North Carolina defense contractors – leadership and IT/cyber staff – and their cybersecurity consultants, managed service providers, and managed security service providers should attend the workshops. Cybersecurity is a team sport, so bring your team!

CMMC 2.0 requires that managed service providers/managed security service providers achieve their CMMC Level 2 certification BEFORE their DoD clients can get their certification if they have access to DoD sensitive data. This requirement will put a lot of pressure on the CMMC assessment ecosystem and could cause lengthy delays in the assessment process. Now is the time to prepare to get your company at the front of the line.

Why You Should Attend

The Department of Defense’s CMMC Program rule sailed through the regulatory review process and was final as of October 15th. The CMMC program will be effective Dec. 16, 2024. The CMMC DFARS rule is expected to be approved, and the rollout will most likely begin in the 3rd quarter of 2025. In 2028, ALL new defense contracts, as well as options on existing contracts, will require compliance with CMMC prior to contract/option award.

Since most contractors are taking 12 – 24 months to prepare for a CMMC assessment, time is running out to get ready. Waiting is risky, particularly for subcontractors. Prime contractors are already putting CMMC-like requirements in their subcontracts and the large primes have made it clear they want their entire supply chains CMMC Level 2 certified.

Nation state adversaries are increasing their cyber-attacks on small defense contractors. These adversaries know smaller contractors don’t have the robust cybersecurity programs in place that the larger primes do, so they’re easier to breach. Adversaries don’t just want to steal technology; they want to disrupt supply chains by disabling small contractors – a major threat to national security.

It is up to all of us to contribute to the security of this country by securing our networks and our sensitive data, so register now for a CMMC Implementation Workshop. 

For more information or to register, visit: https://www.ncmbc.us/cmmc-implementation-workshop-your-path-to-cybersecurity-compliance/