CMMC is moving fast, and the questions from the DIB are getting more specific...
In this January 2026 replay of Redspin's live CMMC Connect, our CMMC Certified Assessors (CCAs) unpack the latest updates from the field and answer real-world questions OSCs are facing as CMMC Level 2 assessments ramp up. This episode (literally) covers:
Recent DoD CMMC FAQ updates and what they clarify (and don’t)
ISACA’s new role as CAICO and what it means for CCP and CCA certifications
The growing pace of completed CMMC assessments and what that signals for 2026
Scoping challenges: virtual machines, shared resources, boundaries, and asset definitions
Flow-down realities. Why primes are increasingly requiring Level 2 from subs
CMMC vs. FedRAMP, and how to tell if you’re an ESP or a CSP
CUI marking, mishandling, and what to do when CUI shows up where it shouldn’t
FIPS validation pitfalls assessors see all the time
Evaluating AI-enabled tools when CUI is involved
Common reasons organizations struggle or fail during assessment
The session wraps with live audience Q&A, candid assessor perspectives, and practical advice drawn directly from active CMMC engagements, no theory, no fluff.
If you’re supporting DoD contracts, preparing for CMMC Level 2, or navigating compliance decisions in real time, this episode delivers clarity where it matters most.
CMMC Connect happens on the last Thursday of every month at 1 PM ET. Register for the series and submit questions here: https://redspin.com/cmmc-connect-hub/
Subscribe to Cyberspin on Apple iTunes, Spotify, or your preferred podcast platform. You can always stream the latest episodes at redspin.com.
