Shows
Climbing Mount CMMCAre You Wasting Your Time With CMMC?*Spoiler Alert* CMMC is real and it's happening right now.In this episode, Kaleigh Floyd and Bobby Guerra discuss the critical aspects of CMMC compliance for contractors, addressing common questions and concerns. They explore the differences between CMMC Level 1 and Level 2, the importance of legal guidance, and the necessity of understanding controlled unclassified information (CUI). The conversation emphasizes the need for proactive planning, leadership buy-in, and the creation of a Plan of Action and Milestones (PoAM) to ensure successful compliance. They also touch on the implications of NIST 800-171 Rev 3 and the risks associated with d...2025-07-2435 min
Climbing Mount CMMC5 Things We Would Change About CMMCIn this episode, Bobby and Kaleigh discuss five significant changes they believe could be made to the CMMC ecosystem. They explore the thought of C3PAOs to providing recommendations after assessments, the possibility of allowing organizations to pass with a score of 88, and the importance of having a C3PAO assessment process for MSPs. They also emphasize the need for yearly reviews instead of full assessments and the challenges posed by FIPS regulations. The conversation highlights the importance of flexibility and clarity in the certification process. Just a reminder that no one is claiming CMMC Jesus in this episode...2025-07-1731 min
Climbing Mount CMMCEverything You Need to Know About CMMC ImplementationIn this episode, Kaleigh Floyd and Bobby Guerra discuss the complexities of adopting CMMC (Cybersecurity Maturity Model Certification) from both the MSP and client perspectives. They explore the challenges organizations face in implementing CMMC, the importance of client education, and the need for a structured approach to change management. The conversation emphasizes the necessity of leadership buy-in and the scalability of processes to ensure compliance without compromising efficiency. The hosts also highlight the ongoing nature of refining CMMC processes within MSPs and the importance of continuous improvement in this area.Axiom's Linkedln: https://www.linkedin.com/company...2025-07-1030 min
Climbing Mount CMMCHow to Build Your CMMC Documents the RIGHT WayIn this episode, Kaleigh and Bobby discuss the complexities of CMMC documentation with Tom Conkle from Optic Cyber Solutions. They explore the challenges of writing effective System Security Plans (SSPs) and Customer Responsibility Matrices (CRMs), emphasizing the importance of viewing these documents as management tools rather than mere compliance checkboxes. The conversation highlights common pitfalls organizations face, the significance of clear communication between service providers and clients, and practical tips for creating effective documentation that enhances cybersecurity practices.Tom Conkle on Linkedln: https://www.linkedin.com/in/tomconkle/Kelly Hood on Linkedln: https://www.linkedin.com...2025-07-0336 min
Climbing Mount CMMCCMMC Inheritance: Which Controls am I Responsible for?In this episode, Kaleigh Floyd and Bobby Guerra delve into the complexities of inheritance within the CMMC framework, particularly focusing on the role of external service providers (ESPs) and the responsibilities of organizations seeking assessment (OSA). They discuss the importance of system security plans, the nuances of the CMMC assessment process, and the challenges faced by managed service providers (MSPs) in navigating inheritance claims. The conversation emphasizes the need for clarity in responsibilities and the potential benefits and limitations of inheriting controls from ESPs. In this conversation, Kaleigh Floyd and Bobby Guerra delve into the complexities of CMMC compliance...2025-06-2643 min
Climbing Mount CMMCThe Importance of Scalability as a Service ProviderIn this episode, Kaleigh and Bobby discuss the complexities of scaling CMMC for Managed Service Providers (MSPs). They explore the challenges of compliance, the importance of tools, and the necessity of having structured operational and sales strategies. The conversation also delves into the 'Four Horsemen' of compliance, which are critical for maintaining security and compliance standards. Finally, they emphasize the importance of ongoing maintenance and the long-term scalability of CMMC processes for MSPs.LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.com/channel/UCaJagoDasNG3MqLqw2Af_ZQ2025-06-1923 min
Climbing Mount CMMCMarketing in the CMMC Industry As an MSPIn this episode, Bobby and Kaleigh discuss the challenges and strategies of marketing within the CMMC space. Kaleigh shares her journey of transitioning into this niche market, emphasizing the importance of building a reputation, understanding client needs, and maintaining transparency throughout the sales process. They explore the significance of effective communication, the necessity of educating clients about CMMC, and the balance between being sympathetic and correcting misconceptions. The conversation highlights the need for managed service providers to be proactive and knowledgeable in their approach to CMMC compliance.LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https...2025-06-1230 min
Climbing Mount CMMCBreaking Down the Roles in CMMC CertificationsIn this episode, Bobby and Kaleigh explore the CyberAB ecosystem, focusing on the various roles and certifications within the CMMC framework. They discuss the importance of understanding the distinctions between Registered Practitioners (RP), Registered Practitioner Organizations (RPO), CMMC Certified Professionals (CCP), and CMMC Certified Assessors (CCA). The conversation also highlights the role of C3PAOs in conducting assessments and the significance of external service providers in the certification process. The hosts emphasize the need for organizations to navigate these certifications effectively to ensure compliance and security in the cybersecurity landscape.Axiom's Linkedln: https://www.linkedin.com/company...2025-06-0530 min
Climbing Mount CMMCThe CMMC Compliance Sidekick You Didn't Know You HadIn this episode of Climbing Mount CMMC, hosts Kaleigh Floyd and Bobby Guerra delve into the intricacies of Customer Responsibility Matrices (CRMs) and their significance in CMMC compliance. They discuss the definition of CRMs, their importance in defining responsibilities between customers and service providers, and the essential components needed to create an effective CRM. The conversation emphasizes the need for clarity in responsibilities, the connection to NIST 800-171 controls, and the importance of understanding vendor relationships in the context of cybersecurity compliance.Optic Cyber Solutions CRM Template: MSP-customer-responsibility-matrix-template 1.xlsxKelly Hood: (9) Kelly...2025-05-2217 min
Climbing Mount CMMCFather/Daughter Duos Discuss the Evolving Landscape of CybersecurityIn this episode of Climbing Mount CMMC, hosts Kaleigh Floyd and Bobby Guerra engage with Chris and Hannah Silvers, a father-daughter duo from CG Silver's Consulting. They discuss their journey in the cybersecurity field, the challenges and dynamics of CMMC, and the importance of community and collaboration in navigating this complex landscape. The conversation highlights the unique challenges faced by MSPs in adapting to CMMC requirements and the evolving nature of their business dynamics. The episode also touches on the intricacies of the sales process in CMMC consulting, emphasizing the need for education and understanding in client relationships. In...2025-05-1548 min
Climbing Mount CMMCHow to Choose the Right MSP and Avoid a False StartIn this episode, Kaleigh Floyd and Bobby Guerra discuss the critical issue of false starts in CMMC assessments, emphasizing the importance of proper documentation and preparation. They explore the phases of CMMC assessments, the consequences of failing to meet requirements, and the necessity of seeking help from consultants. The conversation highlights the significance of mock assessments and understanding the roles of external service providers in the assessment process. The hosts provide practical advice for avoiding false starts and ensuring a successful assessment journey.LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/...2025-05-0831 min
Climbing Mount CMMCSecuring Custom Software: Documenting Software Security Controls for CMMC ComplianceIn this episode, Kaleigh and Bobby welcome back Kyle Lai to discuss the challenges and insights surrounding C3PAOs and the CMMC framework. They explore Kyle's journey into the C3PAO space, the current state of audits, and the importance of software development in compliance. The conversation highlights the need for collaboration between IT and software development teams, the significance of understanding controlled unclassified information (CUI), and the challenges faced during assessments. Kyle shares valuable insights on vulnerability management, the impact of open-source software, and strategies for leveraging existing platforms to ease compliance efforts. The episode concludes with a...2025-05-0141 min
Climbing Mount CMMCUnderstanding CMMC Audits with a Lead AssessorIn this episode of CybHer, Kaleigh Floyd interviews Jil Wright, president of Wrightbrained Security, discussing her extensive experience in IT and the CMMC space. They explore the challenges of cybersecurity assessments, the importance of documentation, and the evolving role of women in the tech industry. Jil shares insights on the necessity of evidence in assessments, the significance of mentorship, and the need for companies to prepare adequately for CMMC compliance. The conversation highlights the importance of collaboration and the unique challenges faced by women in cybersecurity.Jil's Linkedln: https://www.linkedin.com/in/itjil/ ...2025-04-2436 min
Climbing Mount CMMCUnderstanding Your Contracts' CMMC Requirements: A 32 CFR BreakdownIn this episode of Climbing Mount CMMC, Kaleigh and Bobby discuss the 32 CFR final rule and its implications for contractors and subcontractors in the defense industry. They delve into the history and importance of Controlled Unclassified Information (CUI), the requirements for achieving CMMC compliance, and the significance of DFARS clauses. The conversation also covers the challenges of creating a System Security Plan (SSP), the importance of scoping, and the flow-down requirements for subcontractors. The episode emphasizes the urgency for contractors to prepare for CMMC assessments and the potential consequences of non-compliance.LinkedIn: https...2025-04-1736 min
Climbing Mount CMMCCreating CMMC Documentation and Choosing the Right ConsultantIn this episode, Kaleigh Floyd interviews Kelly Hood from Optic Cyber Solutions, discussing her journey into the CMMC space, the challenges faced in consulting, and the importance of effective documentation. They explore the significance of the Customer Responsibility Matrix (CRM) and System Security Plan (SSP), as well as the NIST Cybersecurity Framework (CSF) and its connection to CMMC compliance. Kelly shares insights on navigating compliance requirements and the need for clarity in communication, emphasizing that while the journey may be complex, it is achievable with the right approach and mindset.Optic Cyber Solutions: www.OpticCyber.com 2025-04-1034 min
Climbing Mount CMMCNavigating Vendor Challenges in CMMC ComplianceIn this episode, Bobby Guerra and Kaleigh Floyd discuss the evolving landscape of vendors in the CMMC space, focusing on the challenges and considerations for Managed Service Providers (MSPs) when integrating cloud solutions. They explore the implications of using tools like Huntress and Ninja One, the importance of compliance with regulations, and the role of auditors in ensuring data protection. The conversation emphasizes the need for thorough documentation, understanding the capabilities of tools, and the necessity of maintaining high standards to protect clients' interests.LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/2025-04-0336 min
Climbing Mount CMMCNavigating CMMC: Internal IT ChallengesIn this episode, Kaleigh Floyd and Bobby Guerra discuss the challenges and considerations for internal IT staff tasked with achieving CMMC compliance. They explore the importance of knowledge, leadership buy-in, and organizational maturity in successfully navigating the CMMC process. The conversation emphasizes the need for collaboration between internal teams and managed service providers (MSPs) to effectively implement necessary controls and policies. Additionally, they highlight the risks associated with non-compliance and the importance of legal counsel in ensuring proper adherence to regulations.LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https...2025-03-2724 min
Climbing Mount CMMCWhen Will CMMC Affect My Business? (Phase Rollout and Memo)In this conversation, Bobby Guerra and Ryan Bonner discuss the evolving landscape of the CMMC ecosystem, focusing on the implications of a recent memo from the DOD. They explore the roles of program managers, the importance of understanding CUI, and the challenges faced by contractors and MSPs in achieving compliance. The discussion emphasizes the need for proactive strategies and the potential impact of these changes on the defense industrial base.Ryan's CS2 Session: https://www.youtube.com/watch?v=IEy-TkmKMt8Ryan's LinkedIn: https://www.linkedin.com/in/rybonner/Key Takeaways:-The recent DOD...2025-03-2045 min
Climbing Mount CMMCUnderstanding Export Controls with a Regulatory AttorneyIn this conversation, Bailey Reichelt, a trade and regulatory attorney, discusses the complexities of export controls and their implications for businesses in the aerospace and defense sectors. She emphasizes the importance of understanding export regulations, common misconceptions, and the need for compliance programs. Bailey also shares insights on engaging with regulatory attorneys, the costs involved, and real-world examples of navigating export compliance challenges. The discussion highlights the significance of integrating export compliance into existing workflows and the ongoing journey of maintaining compliance in a changing regulatory landscape.Bailey's Talk at CS2: Practical ITAR Skills for Businesses2025-03-1333 min
Climbing Mount CMMCMSP Owners Share Their CMMC Journeys to Level 2In this episode of Climbing Mounts CMMC, hosts Kaleigh Floyd and Bobby Guerra welcome Andy Sauer from Sentinel Blue. They discuss the challenges and experiences of navigating CMMC compliance as managed service providers (MSPs). The conversation covers the entrepreneurial journey, the importance of leadership and scaling in MSPs, and the preparation required for assessments. They also touch on the future of CMMC and the evolving landscape for MSPs, emphasizing the need for certification and proactive engagement with clients.LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.com...2025-03-0642 min
Climbing Mount CMMC5 Questions to Ask BEFORE Choosing an MSP for CMMCIn this episode, Kaleigh Floyd and Bobby Guerra discuss the critical considerations for OSCs choosing an MSP for their CMMC journey and Managed Service Providers (MSPs) contemplating CMMC Level 2 certification. They explore the importance of selecting a qualified MSP, the preparation required for assessments, the necessity of proper documentation, and the implications of client agreements. The conversation emphasizes the mindset needed for MSPs to effectively support their clients through the certification process, highlighting the potential risks of inadequate preparation and the benefits of a committed approach.LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www...2025-02-2729 min
Climbing Mount CMMCWe Went Through Our CMMC Assessment (What we learned)Axiom passed their assessment! In this episode, Kaleigh Floyd, Bobby Guerra, and Adam Evans discuss their journey to passing a CMMC Level 2 assessment. They share insights from their mock and real assessments, the challenges they faced, and the importance of preparation and self-assessment. The conversation highlights the role of auditors, handling findings, and the continuous nature of compliance in cybersecurity. In this conversation, Axiom discusses their experiences and challenges in achieving a CMMC certification as Managed Service Providers (MSPs). They reflect on the emotional and logistical hurdles faced during the assessment process, the importance of adapting their systems to...2025-02-2049 min
healthsystemCIO.comPartner Perspective: Health Systems Should Give Software Training a Closer Look; Role-specific, Just-in-Time Approach More Effective Way to GoHealth system IT leaders face a growing challenge: clinicians struggle to keep pace with rapid changes in EHRs and other digital tools. Bobby Zarr, Vice President of Healthcare at uPerform, believes AI can transform how health systems deliver training, improving adoption and satisfaction while reducing disruption. “The pace of change is accelerating, and users feel […]
Source: Partner Perspective: Health Systems Should Give Software Training a Closer Look; Role-specific, Just-in-Time Approach More Effective Way to Go on healthsystemcio.com - healthsystemCIO.com is the sole online-only publication dedicated to exclusively and comprehensively serving the information needs of healthcare CIOs...2025-02-1920 minhealthsystemCIO.comPartner Perspective: Health Systems Should Give Software Training a Closer Look; Role-specific, Just-in-Time Approach More Effective Way to GoHealth system IT leaders face a growing challenge: clinicians struggle to keep pace with rapid changes in EHRs and other digital tools. Bobby Zarr, Vice President of Healthcare at uPerform, believes AI can transform how health systems deliver training, improving adoption and satisfaction while reducing disruption. “The pace of change is accelerating, and users feel […]
Source: Partner Perspective: Health Systems Should Give Software Training a Closer Look; Role-specific, Just-in-Time Approach More Effective Way to Go on healthsystemcio.com - healthsystemCIO.com is the sole online-only publication dedicated to exclusively and comprehensively serving the information needs of healthcare CIOs...2025-02-1920 minhealthsystemCIO.comPartner Perspective: Health Systems Should Give Software Training a Closer Look; Role-specific, Just-in-Time Approach More Effective Way to GoHealth system IT leaders face a growing challenge: clinicians struggle to keep pace with rapid changes in EHRs and other digital tools. Bobby Zarr, Vice President of Healthcare at uPerform, believes AI can transform how health systems deliver training, improving adoption and satisfaction while reducing disruption. “The pace of change is accelerating, and users feel […]
Source: Partner Perspective: Health Systems Should Give Software Training a Closer Look; Role-specific, Just-in-Time Approach More Effective Way to Go on healthsystemcio.com - healthsystemCIO.com is the sole online-only publication dedicated to exclusively and comprehensively serving the information needs of healthcare CIOs...2025-02-1920 min
Climbing Mount CMMCThe Mission Behind CMMC from Three Perspectives: C3PAO, MSP, and VendorKaleigh Floyd hosts three prominent women in the CMMC ecosystem: Joy Beland, Amy Williams, and Carley Salmon. They discuss their backgrounds, the importance of cybersecurity compliance, and the evolving landscape of CMMC. Each guest shares their personal motivations for working in this field, highlighting the mission-driven nature of their roles. The conversation also touches on the shift in how organizations view cybersecurity, moving from a cost center to a strategic imperative, especially in light of recent regulatory changes. As they look ahead to 2025, the experts emphasize the urgency for companies to prepare for compliance and the challenges they face...2025-02-1850 min
Climbing Mount CMMCHow to Create a System Security Plan for CMMC Level 2Are you starting your CMMC and don't know where to begin? Let's talk about the foundation of your control implementation, which is the System Security Plan. This is not only critical to your business's compliance journey, but it's also a requirement for CMMC Level 2. Adam Evans, Axiom's Compliance Officer, shares what an SSP is and how he created theirs.LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.com/channel/UCaJagoDasNG3MqLqw2Af_ZQKaleigh's: (1) Kaleigh Floyd | LinkedIn2025-02-1339 min
Climbing Mount CMMCWhat Does a CMMC Agreement Look Like? (And why have it?)In this conversation, Bobby Guerra and Kaleigh Floyd discuss the critical role of agreements in the CMMC compliance journey. They emphasize the importance of well-structured agreements to mitigate risks and ensure clarity in responsibilities between Managed Service Providers (MSPs) and their clients. The discussion covers various aspects, including the significance of service level agreements, guarantees, handling assessment failures, exit strategies, and preparing for changes in requirements. The conversation aims to equip business owners and leaders with insights to navigate the complexities of CMMC compliance effectively.LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom...2025-02-0623 min
Climbing Mount CMMCBecoming an Authorized C3PAO with Koren Wise (Women in CMMC)(CybHER: Women in CMMC) In this inaugural episode of CybHER: Women in CMMC, Kaleigh Floyd and Koren Wise discuss the significant contributions of women in the CMMC ecosystem. Koren shares her journey from being a network engineer to becoming a licensed training provider and C3PAO. The conversation delves into the challenges and cultural shifts within organizations as they adapt to CMMC standards, the importance of training, and the balance between motherhood and a demanding career in cybersecurity. Koren emphasizes the resilience and capabilities that motherhood brings to professional life, and they both celebrate the increasing presence of women...2025-02-0431 min
Climbing Mount CMMCThe Assessment Tango (How to speak during a CMMC assessment)Have you ever wondered what it's truly like in a CMMC assessment? Maybe you've thought about how to speak to an assessor or who needs to speak during certain controls. During this episode, we talk about Bobby's experience and how he prepared himself. Your SSP is your script, read from it.LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.com/channel/UCaJagoDasNG3MqLqw2Af_ZQKaleigh's: (1) Kaleigh Floyd | LinkedIn2025-01-3025 min
Climbing Mount CMMCCan You Fix Your CMMC Assessment Score?It's important to be fully prepared for a CMMC assessment by a C3PAO, but what if your humanity kicks in? There is an opportunity to gather more information for your assessor if they allow the re-evaluation. Let's talk about it!LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.com/channel/UCaJagoDasNG3MqLqw2Af_ZQKaleigh's: (1) Kaleigh Floyd | LinkedIn2025-01-2324 min
Climbing Mount CMMCWhat Does CMMC Readiness Look Like?In this episode, Kaleigh Floyd and Bobby Guerra discuss what CMMC readiness looks like, focusing on the necessary steps for organizations and Managed Service Providers (MSPs) to prepare for compliance. They emphasize the importance of having a solid system security plan, understanding the roles of MSPs, and the need for clear communication and documentation throughout the process. The conversation also highlights the challenges faced by smaller businesses in navigating CMMC requirements and the critical role of MSPs in supporting their clients through this journey.LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/2025-01-1643 min
The IT CollabEpisode 39: Navigating the CMMC Journey with Bobby Guerra and Kaleigh FloydIn this episode of The IT Collab, host Nathan Taylor dives deep into the complexities of the Cybersecurity Maturity Model Certification (CMMC) with special guests Bobby Guerra, CEO of Axiom, and Kaleigh Floyd, Axiom's Marketing Director. With Brandon Barnes out sick, Nathan takes the opportunity to explore one of his favorite topics—CMMC—with two experts who have firsthand experience navigating its challenges.
Bobby and Kaleigh share their journey of transforming Axiom into a CMMC-focused Managed Service Provider (MSP), discussing the hurdles they faced and the strategies they employed to achieve compliance. They provide valuable insights into the phased rollout of C...2025-01-0956 min
Climbing Mount CMMCHow Do I Get Involved in the CMMC Ecosystem?Are you new to CMMC and want to know where to start? This is a good place for you. Derrich has a lot of training, resources, and opportunities for others. The CMMC ecosystem is full of resources that will help you along the CMMC journey. Make sure to check them out and get involved!Derrich Phillips: (32) Derrich Phillips, Lead CMMC Certified Assessor (CCA) | LinkedInCPN Page: https://www.linkedin.com/groups/14523710/LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.com/channel/UCaJagoDasNG3MqLqw2Af...2025-01-0929 min
Climbing Mount CMMCHow We Prepared for Our CMMC Assessment(Season Three Episode 1) It's less than 30 days from our CMMC Level 2 assessment and our MSP has done A LOT of preparation. We'd love to share our experience with all of you. We prepared our MSP to not only service ourselves, but also our clients. Axiom's goal is to be open and transparent with our audience and we hope you all get a lot from this episode.LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.com/channel/UCaJagoDasNG3MqLqw2Af_ZQKaleigh's: (1) Kaleigh Floyd | LinkedIn2025-01-0237 min
Climbing Mount CMMCHow to Climb Mount CMMC (for MSPs and SMBs)You're a business that has two options: Commercial or CMMC?It's hard to fully see the path ahead when you're only at the beginning. Bobby and Kaleigh give a 12 Step process of climbing the CMMC Mountain ahead. This is focused more towards MSPs, but any business, especially SMBs, can get a lot out of this.We hope you enjoy this final episode of Season Two! Stay tuned for Season Three in two weeks.LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.com/channel...2024-12-1242 min
Climbing Mount CMMCHow to Perform a Self-Assessment w/Vince ScottIn this episode, Kaleigh Floyd, Bobby Guerra, and Vincent Scott discuss the critical aspects of self-assessments in the context of CMMC compliance. They explore the different types of self-assessments, the importance of having a System Security Plan (SSP), and practical strategies for conducting effective self-assessments. The conversation emphasizes the need for thorough preparation, understanding assessment objectives, and the necessity of collecting evidence to support self-assessment scores. The episode also highlights the importance of continuous monitoring and the use of self-assessment tools to streamline the process.LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom...2024-12-0535 min
Climbing Mount CMMCDr. Ron Ross Shares His Story (From the Army to NIST and Beyond)We sat down with Dr. Ron Ross about his story and how he got to where he is today. He shares what his first job was out of the Army and his health battle while writing publications for NIST. His journey is incredibly inspiring, and we feel such gratitude to be able to share this with all of you.To hear about the man behind the publications, was something truly special.LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.com/channel/UCaJagoDasNG3MqLqw2Af_ZQ2024-11-281h 00
Climbing Mount CMMCThe Connection Between NIST SP 800-53 and SP 800-171You can't have NIST SP 800-171 without the 800-53 that came before it. In today's episode, Bobby sat down with FedRAMP expert, Karen Stanford, to discuss the connection between the two publications and how you can use this to your advantage when preparing for an assessment. Many of the 800-171 controls can be traced back to 800-53 and it helps give more clarity to the requirements. We hope you enjoy today's episode!Karen's LinkedIn: (2) Karen Stanford | LinkedInLinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.c...2024-11-2134 min
Scaling the WallPutting Your Framework Foot Down with Bobby GuerraBobby joins us for a second time to talk implementing a framework across your entire MSP client base. Bobby is CEO at Axiom, an MSP based out of Jacksonville, FL and host of the Climbing Mount CMMC podcast.
Find him on LinkedIn at: https://www.linkedin.com/in/bobbyguerra/
Listen to his podcast, Climbing Mount CMMC on Spotify, Apple Podcasts, or YouTube!
__________________________
If you're an MSP looking for a cyber insurance partner, checkout FifthWall Solutions at fifthwallsolutions.com/msp
Don't forget to like and subscribe! In b...2024-11-1917 minClimbing Mount CMMCThe Purpose Behind SP 800-172 w/ Dr. Ron RossToday, Bobby and Kaleigh are joined by Dr. Ron Ross from NIST, an author of SP 800-172 and MUCH MORE. He shares the true purpose behind the document and what the new draft brings to the table. The draft was published on 11/13/24 and public comments are now being accepted until January of 2025.LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.com/channel/UCaJagoDasNG3MqLqw2Af_ZQKaleigh's: (1) Kaleigh Floyd | LinkedIn2024-11-1428 minScaling the WallHow Can I Implement the CIS Framework at my MSP? with Bobby GuerraBobby is CEO at Axiom, an MSP based out of Jacksonville, FL and host of the Climbing Mount CMMC podcast.
Find him on LinkedIn at: https://www.linkedin.com/in/bobbyguerra/
Listen to his podcast, Climbing Mount CMMC on Spotify, Apple Podcasts, or YouTube!
__________________________
If you're an MSP looking for a cyber insurance partner, checkout FifthWall Solutions at fifthwallsolutions.com/msp
Don't forget to like and subscribe! In between episodes, engage with us at linkedin.com/company/scaling-the-wallMusic in this episode:
Poem - Soundroll
https://uppbeat.io/t/soundroll/poem
L...2024-11-1119 minClimbing Mount CMMCThe Implementation of CMMC (4 Phase Rollout) w/ Vince ScottIn this podcast episode, Bobby Guerra, Kaleigh Floyd, and Vince Scott discuss the complexities of the Cybersecurity Maturity Model Certification (CMMC) and its phases. Vince shares his extensive background in cybersecurity, transitioning from offense to defense, and the challenges faced by small businesses in achieving compliance. The conversation delves into the realities of implementing CMMC standards, the importance of incident response, and the future implications of these regulations on businesses. They explore the phases of rollout, the importance of self-assessments, and the risks associated with not being certified. The discussion also highlights the capacity issues that may arise as...2024-11-0748 minClimbing Mount CMMCHow the 32 CFR Rule Affects VendorsIn this conversation, Kaleigh Floyd, Bobby Guerra, and Adam Evans discuss the distinctions between Cloud Service Providers (CSPs) and other service providers (ESPs), the significance of Controlled Unclassified Information (CUI), and the importance of vendor assessments in the context of the 32 CFR rule. They delve into the necessary audits, risk management strategies, and the implications of security protection data versus security protection assets for contractors and subcontractors in the defense industry.They discuss the importance of selecting the right vendors for compliance, emphasizing the need for vendors to be prepared and knowledgeable. The conversation also highlights the...2024-10-3135 minClimbing Mount CMMCLet's Talk About FedRAMP (What, Why and How?)Karen and Bobby dive into the complexities of cybersecurity audits, particularly focusing on the distinctions between CMMC and FedRAMP. They discuss operational challenges, the assessment processes, and the importance of recommendations in FedRAMP. The conversation also highlights misconceptions about FedRAMP, the implications of equivalency versus accreditation, and the future of cloud services in relation to these frameworks.LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.com/channel/UCaJagoDasNG3MqLqw2Af_ZQKaleigh's: (1) Kaleigh Floyd | LinkedIn2024-10-2451 minClimbing Mount CMMCAn MSP's Breakdown of 32 CFR (How does this affect MSPs?)Are you an MSP navigating CMMC? Are you a contractor looking for the right MSP for your climb to CMMC? This episode is going to decipher the 32 CFR final rule with those to perspectives front-of-mind.Bobby and Kaleigh discuss the assessment requirements of an ESP, what inheritance is, and how an MSP can prepare to help their clients in the DIB space.LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.com/channel/UCaJagoDasNG3MqLqw2Af_ZQKaleigh's: (1) Kaleigh Floyd | LinkedIn2024-10-2244 minClimbing Mount CMMCNavigating the 32 CFR Final Rule RegulationsIn this conversation, Bobby Guerra and Kaleigh Floyd discuss the recent release of the 32 CFR Final Rule and its implications for organizations. They explore the importance of self-assessments, the complexities involved, and the distinctions between different types of compliance measures such as enduring exceptions, operational plans, and temporary deficiencies. The conversation also delves into the differences between Cloud Service Providers (CSPs) and External Service Providers (ESPs), providing insights into how organizations can navigate these new regulations effectively. Kaleigh and Bobby discuss FedRAMP requirements, the importance of understanding inheritance in compliance frameworks, and the recent changes in certification r...2024-10-1748 min
Climbing Mount CMMCThe 32 CFR Final Rule is out NOW (Let's chat)32 CFR Final Rule!The time has come. We wanted to hop on a quick video, before Kaleigh hops on a plane, to talk about the 32 CFR FINAL RULE. We may or may not have recorded a 2 hour long podcast this week that we now have to cut…but we are back and ready to review the Final Rule.Phase extensions, SPD definitions, ESP requirements and more!Read it Here: https://public-inspection.federalregister.gov/2024-22905.pdfLinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://ww...2024-10-1117 minClimbing Mount CMMCLet's Get Real About Resources (What you need on your CMMC Climb)Hello Climbers, let's get real about the resources needed on your climb of CMMC. Bobby and Adam discuss the people, tools, and more that it takes to accomplish CMMC Level 2 compliance.They explore the importance of having knowledgeable personnel, the role of Managed Service Providers (MSPs) and consultants, the challenges in finding certified MSPs, and the technology resources required for compliance. The discussion emphasizes the significance of scoping, data flow, and security considerations, as well as the preparation needed for assessments and audits.LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/...2024-10-1044 min
Climbing Mount CMMCRaising Boats and Empowering New Voices in Cybersecurity with Jason SproesserIn this engaging conversation, Jason Sproesser shares his journey into the CMMC space and the evolution of the Sum IT Up podcast. The discussion highlights the importance of community, vulnerability, and authenticity in the cybersecurity field, as well as the challenges faced by MSPs. Jason emphasizes the need for collaboration and the value of sharing experiences to help others navigate the complexities of cybersecurity compliance. LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.com/channel/UCaJagoDasNG3MqLqw2Af_ZQKaleigh's: (1) Kaleigh Floyd | LinkedIn2024-10-0345 min
Climbing Mount CMMCThe Country Song of CMMC (What 32 CFR Did to Us)In this podcast episode, Bobby Guerra and Kaleigh Floyd discuss the challenges and implications of the CMMC (Cybersecurity Maturity Model Certification) ruling. They highlight the impact of the 32 CFR (Code of Federal Regulations) on organizations and vendors who need to meet the level two requirements. They emphasize that many companies were not intentionally misleading or non-compliant, but rather were caught off guard by the new ruling. The conversation explores the emotional and financial toll this has taken on businesses and offers recommendations for those navigating the CMMC process.LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website...2024-09-2623 minClimbing Mount CMMC5 Things We Learned from Our Gap AssessmentFresh off the press! Bobby and Adam just completed a gap assessment done by a C3PAO and they want to share what they've learned with all of you. Here are the top 5 things that made their assessment so difficult. We hope you enjoy.LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.com/channel/UCaJagoDasNG3MqLqw2Af_ZQKaleigh's: (1) Kaleigh Floyd | LinkedIn2024-09-1938 min
Climbing Mount CMMCEmergency Episode Drop (32 CFR Review Status)Emergency Podcast Episode 🚨 The 32 CFR Final Rule COMPLETED THE REVIEW PROCESS and things are heating up. We couldn't help but hop on the podcast and share this news and what it means for organizations and MSPs in the community.LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.com/channel/UCaJagoDasNG3MqLqw2Af_ZQKaleigh's: (1) Kaleigh Floyd | LinkedIn2024-09-1637 minClimbing Mount CMMCOur Journey to CMMC ComplianceLet's get personal. Axiom has been on this CMMC journey for about 3 years now and we'd love to share our experience as an MSP and small business in the industry. In this episode, Bobby and Adam share how they got into this space and their fears and challenges going in. Bobby started Axiom over 20 years ago and the transition to a Level 2 Certified MSP has been challenging to say the least. They also share where they're at now and how they are supporting clients.LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/2024-09-1231 min
Is Breakfast Included?183 - Bobby LieblingIn this episode, Bernie chats with Bobby Liebling, co-founder and lead singer of doom metal pioneers Pentagram. Bobby discusses the band's upcoming album, “Lightning in a Bottle”, their first in ten years, featuring a revamped lineup with members Tony Reed & Scooter Haslip of Mos Generator and Henry Vasquez of Saint Vitus. Bobby reflects on the challenges of the past decade, including his personal struggles documented in the film “Last Days Here”, and how making this new album brought him a renewed sense of purpose. He also shares stories from his 50+ years in the music industry, the influence of Pentagram on other...2024-09-0646 minClimbing Mount CMMCWhat's On the CMMC Menu? (4 Different Approaches to CMMC)Let's talk about the CMMC Menu items. There are multiple ways that a business can tackle CMMC and we wanted to share with you 4 popular ways. In no way are we claiming these to be the only ways, but we do feel like these are the top four ways we've seen companies climb the mountain. Comment below if you have any questions or ideas on another way to climb. We'd love to hear!LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.com/channel/U...2024-09-0537 minClimbing Mount CMMCNavigating the Complex Landscape of CMMC Compliance w/Jacob Hill(Season Two Episode 15) Bobby Guerra is joined by Jacob Hill, VP of cybersecurity at Alamo City Engineering Services and founder of GRC Academy. Jacob discusses the importance of education and training in the defense contractor industry. He shares his experience in implementing CMMC compliance and the challenges he faced in finding comprehensive education resources. Jacob explains the focus of his GRC Academy courses, including an overview course for practitioners and an awareness course for executives. He emphasizes the need for defense contractors to understand the requirements and implications of CMMC and advises against blindly following consultants without educating oneself.2024-08-2931 minClimbing Mount CMMCSoftware Development in the CMMC Ecosystem w/Kyle LaiIn this conversation, Bobby is joined by Kyle Lai, President and Chief Information Security Officer at KL3. They discuss the challenges and considerations of CMMC compliance for organizations involved in software development. Kyle emphasizes the importance of selecting a C3PAO (CMMC Third-Party Assessor Organization) that understands the unique requirements of software development and can assess the organization effectively. Bobby and Kyle also highlight the need for scoping the software development process, identifying security protection assets, and defining the division of duties between IT and development teams. Kyle advises organizations to have a solid plan in place for managing...2024-08-2242 minClimbing Mount CMMCLet's Get Real About Cost of CMMC(Season Two Episode 13) In this episode, Bobby and Kaleigh discuss the Cost in their Let's Get Real Miniseries. They breakdown the cost into three categories: Scoping & Design, Implementation, and Maintenance. They are honest about their personal journey and costs of their CMMC track. Bobby explores Option A, which involves hiring and training internal staff, and Option B, which involves outsourcing to an external organization. They emphasize the importance of having a point of contact within the organization to work with the consultant and ensure the desired outcomes are achieved. LinkedIn: https://www.linkedin.com/in/bobbyguerra/W...2024-08-1534 minClimbing Mount CMMCAre You Ready for A CMMC Assessment? w/Adam EvansIn this conversation, Bobby and Adam discuss the importance of being ready for an assessment and share their experiences with self-assessment. They highlight the need to have solid evidence and be able to demonstrate compliance with the controls and assessment objectives. They also emphasize the interconnectedness of controls and the importance of having evidence that covers multiple controls. They introduce a template they use for self-assessment and explain how it helps them track their progress and identify areas that need more focus. Overall, the conversation provides valuable insights and tips for organizations preparing for assessments.LinkedIn: https...2024-08-0837 minClimbing Mount CMMC5 Questions to Ask Your MSP to Gauge Their CMMC ReadinessIf you're planning to get certified in the next two years and work with an MSP, you should ask them these questions. If you're an MSP/ESP providing services to companies aiming for certification, you should be prepared to answer these questions. It takes a company eight months to a year to become CMMC ready.Through this pointed and hard-hitting podcast episode, we aim to educate and challenge us all. Being an MSP helping clients on their CMMC path is serious business and a huge responsibility. This can't be solved with products or white labeling; it requires...2024-08-0122 minClimbing Mount CMMCThings You Should Prepare for BEFORE Your Assessment w/Amira Armond(Season 2 Episode 10) Bobby Guerra and Amira Armond discuss various cybersecurity challenges and solutions. They emphasize the need for strong physical defenses, proper training, and encryption when dealing with external media. They also highlight the importance of securing contractor-managed assets and implementing security measures across the entire network. It is critical for organizations to have a clear understanding of their entire network and the assets within it, even if they are not considered CUI assets. Lastly, Bobby and Amira have a discussion on the reporting requirements for cyber incidents in the defense contracting industry.LinkedIn: https://w...2024-07-2538 minClimbing Mount CMMCLet's Get Real (Miniseries)(Season 2 Episode 9) Alright Climbers, let's get real. We are ready to share our truth and honest opinions of our CMMC journey. Bobby and Kaleigh will be specifically breaking down the cost, resource, impact, and time. If you're interest in our journey and the things that we've learned along the way, make sure to tune in to this miniseriesLinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.com/channel/UCaJagoDasNG3MqLqw2Af_ZQKaleigh's: (1) Kaleigh Floyd | LinkedIn2024-07-1823 minClimbing Mount CMMCThe Importance of Education and Gap Assessments in the CMMC Space w/Koren Wise(Season 2 Episode 8) Koren Marie Wise, CEO of Wise Technical Innovations, and Bobby Guerra emphasize the importance of having a skilled and knowledgeable team, conducting thorough gap assessments, and understanding the flow of Controlled Unclassified Information (CUI). Koren also highlights the need for proper scoping, accurate network diagrams, and the right skill sets to ensure compliance with the NIST 800-171 framework. In this conversation, they discuss the challenges and considerations for Managed Service Providers (MSPs) in the context of the Cybersecurity Maturity Model Certification (CMMC). They emphasize the importance of engaging with experienced and knowledgeable MSPs who understand the requirements...2024-07-1159 min
Climbing Mount CMMCCan MSPs Participate in Joint Surveillance Assessments?In this conversation, Bobby Guerra, Adam Evans and Brian Hubbard discuss the challenges faced by MSPs in meeting compliance requirements, particularly in relation to the CMMC. They explore the concept of Joint Surveillance Voluntary Assessments (JSVAs) and the benefits they offer in terms of getting a jumpstart on certification. They also discuss the importance of MSPs staying engaged with the Defense Industrial Base (DIB) and the need for clarity and guidance from the DOD on various aspects of compliance. The conversation highlights the critical role of MSPs in supporting the DIB and the potential consequences of not having enough...2024-07-0434 minClimbing Mount CMMCLet's Talk About Scoping w/Amira ArmondIn today's episode, Bobby is joined by Amira Armond, President of Kieri Solutions. They discuss scoping in the CMMC landscape and the things that can help or hinder your journey. Amira breaks down the difference between in scope and out of scope, is your work email able to be on a personal device, and more. We hope you enjoy today's episode!LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.com/channel/UCaJagoDasNG3MqLqw2Af_ZQKaleigh's: (1) Kaleigh Floyd | LinkedIn2024-06-2744 minClimbing Mount CMMCThe Alphabet Soup of CMMCIf you are on your CMMC journey, like us, you've noticed the MANY acronyms that come with the landscape. We are here to breakdown the different acronyms and how they connect to each other. We hope that you enjoy todays podcast!LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.com/channel/UCaJagoDasNG3MqLqw2Af_ZQKaleigh's: (1) Kaleigh Floyd | LinkedIn2024-06-2035 minClimbing Mount CMMCHow Compliance Effects the MSP Industry w/Joy Beland, Stuart Itkin, and George Perezdiaz(Season Two Episode 4) Bobby is joined by Joy Beland, Stuart Itkin, and George Perezdiaz to discuss the changes happening in the MSP industry, due to these new compliance regulations and frameworks. Is it for the better? How can we prepare our businesses for this change?LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.com/channel/UCaJagoDasNG3MqLqw2Af_ZQKaleigh's: (1) Kaleigh Floyd | LinkedIn2024-06-1352 min
Climbing Mount CMMCThe Importance of Education in the CMMC Ecosystem w/Matt Hoeper(Season Two Episode 3) Bobby is joined by Matt Hoeper, from Edwards Performance Solutions, to discuss the educational piece of the CMMC world. They discuss the CCP and CCA courses and how to prepare for testing.He highlights the role of certifications like CCP (Certified CMMC Professional) and the knowledge of IT and NIST standards in preparing for CMMC assessments. Matt emphasizes the need for consultants and assessors to have a deep understanding of the CMMC requirements to ensure successful assessments and contract wins. He also recommends following industry experts on LinkedIn for valuable insights and staying updated on...2024-06-0633 min
Climbing Mount CMMCWhat You Should Know and Look for in A GRC Tool w/Mark Berman(Season Two Episode 2) Bobby is joined by Mark Berman, CEO of FutureFeed.co, to discuss his connection to Cyber AB and why GRC tool are so important to your security and compliance journey. We hope you enjoy today's episode and make sure to comment any questions you may have.The conversation also touches on the concept of security protection data (SPD) and the challenges it poses for GRC tools. The need for clarity and regulation in handling SPD is highlighted, along with the importance of choosing a GRC tool that prioritizes data security.LinkedIn: https...2024-05-3048 min
Climbing Mount CMMCNavigating Cybersecurity Requirements in Government Contracts w/Brian Hubbard and Shel Phillips(Season Two Episode 1) Bobby sits down with Shel Phillips and Brian Hubbard to discuss an RFP and how to read and break it down. During a CMMC journey, many will come across RFPs, and it is critical to know and understand how to read and review them properly.They emphasize the importance of MSPs/MSSPs and organizations working together to ensure compliance and avoid potential risks. In this conversation, Brian Hubbard and Shel Philips discuss the importance of understanding and complying with cybersecurity requirements in government contracts. They explore topics such as the Federal Acquisition Regulation (FAR...2024-05-2342 min
Climbing Mount CMMCSeason One Finale -Our Favorite Moments(Season One Episode 22) Well, here we are at the Final Episode of this season. We can't thank all of you enough for joining us on this journey of CMMC. This season was better than we could have ever imagined. The guests were wonderful and we're grateful they took the time to share their thoughts and perspectives on some hard-hitting topics. Season Two will start on May 24th with ALL NEW CONTENT! We're thrilled to share these episodes with you. Until then, keep on climbing!Our Guests for Season One:Brian HubbardJoy Beland2024-04-1832 minClimbing Mount CMMCQuestions to Ask When Hiring A CMMC Consultant(Season One Episode 21) Are you considering hiring a consultant or MSP to help you along your CMMC journey? There are things you should know and questions you should ask BEFORE starting your climb. Bobby Guerra and Joe Scholefield talk about the questions businesses should ask themselves and their potential consultants that will make the journey a bit easier. We hope that you enjoy our last guest podcast of Season One! LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.com/channel/UCaJagoDasNG3MqLqw2Af_ZQKaleigh's: (1) Kaleigh F...2024-04-1121 minClimbing Mount CMMCWhat MSPs Need to Know About FedRAMP(Season One Episode 20) We've talked about the connection between CMMC and FedRAMP, now it's time to discuss what MSPs need to know about FedRAMP, while on their journey of CMMC. Bobby is joined by Karen Stanford to discuss this topic. With Karen's expertise on FedRAMP, she expresses her recommendations for the MSP community, when climbing the hill of CMMC.LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.com/channel/UCaJagoDasNG3MqLqw2Af_ZQKaleigh's: (1) Kaleigh Floyd | LinkedIn2024-04-0543 minClimbing Mount CMMCWhat is Security Protection Data and Assets?(Season One Episode 19) We are joined by Karen Stanford to discuss the controversy of defining Security Protection Data. This is an honesty-based episode, and we don't hold back. Let's dive in!As a seasoned cybersecurity professional with over 20 years of experience, Karen has a proven track record of delivering high-quality consulting services to both commercial and federal clients, especially in the field of cloud computing. Karen is the President and Founder of Archstone Security, LLC, a company that she launched in 2022, to help organizations achieve and maintain compliance with the most stringent standards, such as FedRAMP, FISMA...2024-03-2829 minClimbing Mount CMMCThe MSP Cybersecurity Exchange (MSPCyberX)(Season One Episode 18) If you're an MSP looking for a community to grow with, you're in the right place! Today, Kaleigh sits down with Brian Hubbard to discuss his new entitative, MSP Cybersecurity Exchange. We are going to talk about their mission and vision behind MSPCyberX and what made Brian start it in the first place.Learn More: www.mspcyberx.comBrian Hubbard is the President of Evolved Cyber Solutions, bringing over 40 years of cybersecurity experience to the table. Specializing in developing cost-effective cybersecurity programs for small to medium-sized businesses, Brian is a Certified CMMC...2024-03-2123 minClimbing Mount CMMCWhat is CMMC?(Season 1 Epsiode 17) In this episode, Kaleigh and Adam discuss the beginning of CMMC and what it is exactly. If you're starting to see this acronym a lot and don't know where to start, this is the perfect video for you.LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.com/channel/UCaJagoDasNG3MqLqw2Af_ZQKaleigh's: (1) Kaleigh Floyd | LinkedIn2024-03-1533 minClimbing Mount CMMCIs MSP a Four-Letter Word with CMMC?Bobby and Adam discus what CMMC means for the average MSP. It's going to hit a point in every MSPs journey where they have to decide to either take on the CMMC mountain or go the other way. They discuss where their company, Axiom, is in their journey of CMMC and where they want to be next year. They also discuss the pros and cons with taking on the climb.References: The Fascinating History of CMMC (2010 - 2020) as Told by Jacob Horne (youtube.com)LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www...2024-03-0739 minClimbing Mount CMMCCommon Mistakes MSPs Make When Tackling CMMC (Part Two)(Season 1 Episode 15) Bobby Guerra and Adam Evans discuss some of the most common mistake MSPs make while on the journey of CMMC. They know many of these mistakes because they made them themselves. Their goal is to educate others so that their journey may be bit easier than their own. This is part two of a two-part episode.LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.com/channel/UCaJagoDasNG3MqLqw2Af_ZQKaleigh's: (1) Kaleigh Floyd | LinkedIn2024-02-2326 minClimbing Mount CMMCCommon Mistakes MSPs Make When Tackling CMMC (Part One)(Season 1 Episode 14) Bobby Guerra and Adam Evans discuss some of the most common mistake MSPs make while on the journey of CMMC. They know many of these mistakes because they made them themselves. Their goal is to educate others so that their journey may be bit easier than their own. This is part one of a two part episode.LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.com/channel/UCaJagoDasNG3MqLqw2Af_ZQKaleigh's: (1) Kaleigh Floyd | LinkedIn2024-02-1625 minClimbing Mount CMMCThe Fears Vendors Have With CMMC(Season 1 Episode 13) In tis episode, Bobby and Adam talk with Wes Spencer about the fears and concerns vendors have when dealing with CMMC. There are many unknowns and there are also many things being said. What do you believe? Which path do you follow? The key word that Bobby wants to highlight is TRANSPARENCY.LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.com/channel/UCaJagoDasNG3MqLqw2Af_ZQKaleigh's: (1) Kaleigh Floyd | LinkedIn2024-02-0848 minClimbing Mount CMMCThe Connection Between FedRAMP and CMMC(Season 1 Episode 12) In today's episode, Bobby talks with Karen Stanford about the connection between the FedRAMP space and CMMC. Karen gives insight to what MSPs should be prepared for and how they can best prepare their clients. *This episode was recorded before the latest CMMC ruling.*LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.com/channel/UCaJagoDasNG3MqLqw2Af_ZQKaleigh's: (1) Kaleigh Floyd | LinkedIn2024-02-0226 minClimbing Mount CMMCTop 10 Things MSPs Should Be Doing (Part Two)(Season 1 Episode 11) And the journey continues! Bobby talks to Matt Lee (CISSP, CCSP, CFR, PNPT) about the last 5 of their top 10 things MSPs should be doing list. No filter required for this real talk about the do's and don'ts of the MSP and cybersecurity world.LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.com/channel/UCaJagoDasNG3MqLqw2Af_ZQKaleigh's: (1) Kaleigh Floyd | LinkedIn2024-01-2538 min
Rio Grande Guardian's PodcastEverything state Rep. Bobby Guerra said at RGVP's Legislators Appreciation ReceptionMCALLEN, Texas - State Rep. R.D. ‘Bobby’ Guerra is encouraging his constituents to ask as many questions as possible of him.“Increasing transparency and efficiency in government is the upmost important thing that we do and I hope you all ask us questions, because that's the only way you're going to know what what we're doing,” Guerra said, at an event hosted recently by the Rio Grande Valley Partnership.The event was titled “Rio Grande Valley Legislators Appreciation Reception.” It was held at the Radisson in McAllen.2024-01-2207 minClimbing Mount CMMCTop 10 Things MSPs Should Be Doing (Part One)(Season 1 Episode 10) Bobby talks to Matt Lee (CISSP, CCSP, CFR, PNPT) about the top 10 things MSPs should be doing right now. No filter required for this real talk about the do's and don'ts of the MSP and cybersecurity world.LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.com/channel/UCaJagoDasNG3MqLqw2Af_ZQKaleigh's: (1) Kaleigh Floyd | LinkedIn2024-01-1838 minClimbing Mount CMMCThe Connection Between CIS and CMMC(Season 1 Episode 9) Bobby talks with Shel Philips(PMP RP) about how you can't have security without compliance, CIS, the NIST framework, and more.LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.com/channel/UCaJagoDasNG3MqLqw2Af_ZQKaleigh's: (1) Kaleigh Floyd | LinkedIn2024-01-1140 minClimbing Mount CMMCThe CMMC Ruling and What It Means For MSPs(S1E8) In today's podcast episode, we're joined by Amira Armond and Brian Hubbard as we delve into the impact of the new CMMC Proposed Ruling on how it effects MSPs. How does this ruling influence the tools available to MSPs because of Security Protection Data requirements? Where do MSPs stand in the phased rollout of the CMMC program? And, importantly, how can MSPs avoid the necessity of being level two certified?We didn’t hold back; we asked the tough questions, and Amira and Brian shared their insightful perspectives on these critical topics and more....2024-01-0459 minClimbing Mount CMMCWhy Businesses Should Have Cyber Insurance(S1E7) Bobby talks to Will Brooks from FifthWall Solutions about cyber insurance and why it is important for all businesses. Cyber security is not a part-time job and, in this episode, we discuss why.Learn More: https://fifthwallsolutions.com/Follow Will: https://www.linkedin.com/in/wi1bo/LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.com/channel/UCaJagoDasNG3MqLqw2Af_ZQKaleigh's: (1) Kaleigh Floyd | LinkedIn2023-12-2829 minClimbing Mount CMMCShould I Use a CMMC Template?(S1E6) In this episode, Bobby talks with Amira Armond(CCA) about CMMC templates. When you're looking for a CMMC Template, what information should you know before purchasing? No CMMC templates are created equal.Learn more about: https://www.kieri.com/Follow: https://www.linkedin.com/in/amira-armond/LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.com/channel/UCaJagoDasNG3MqLqw2Af_ZQKaleigh's: (1) Kaleigh Floyd | LinkedIn2023-12-1439 min
Climbing Mount CMMCHow Much Has CMMC Cost Us?(S1E5) In this episode, we breakdown the REAL cost of CMMC for us as a company. This consists of TRUE numbers and TRUE talk. This is us being transparent with all of you about what it has cost us as well as what we're projected to spend for the coming year.Our website: https://www.axiom.tech LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.com/channel/UCaJagoDasNG3MqLqw2Af_ZQKaleigh's: (1) Kaleigh Floyd | LinkedIn2023-12-0719 min
Climbing Mount CMMCPreparing for our Level 2 CMMC Assessment(Season 1 Episode 4) We are thrilled to have Adam Evans joining our Axiom team! In this episode, Bobby and Adam discuss the challenges they're facing while preparing for their Level 2 assessment.LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.com/channel/UCaJagoDasNG3MqLqw2Af_ZQKaleigh's: (1) Kaleigh Floyd | LinkedIn2023-12-0130 minClimbing Mount CMMCMSPs for the Protection of Critical Infrastructure w/Joy Beland(S1E3) In this episode, Bobby and Joy Beland (CCA) shed light on the MSPs for the Protection of Critical Infrastructure initiative. They explore the collective's objectives and what MSPs/MSSPs can anticipate upon joining. Emphasizing the importance of building a secure, compliant, and resilient infrastructure, this discussion provides valuable insights for industry professionals. Our website: https://www.axiom.tech Learn more about: https://www.mspcollective.org/ Follow: https://www.linkedin.com/in/joy-belinda-beland/ LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouT...2023-11-3040 minClimbing Mount CMMCHow to Prepare for a CMMC Assessment w/Brian Hubbard(S1E2) In this episode, Bobby Guerra tackles the essentials of preparing for a CMMC Assessment. He sits down with a Certified CMMC Assessor, Brian Hubbard, to delve into the key elements assessed during the process. Emphasizing the significance of both business and MSP compliance, this discussion offers crucial insights for navigating CMMC assessments. Our website: https://www.axiom.tech Learn more about: https://evolvedcyber.com/ LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.com/channel/UCaJagoDasNG3MqLqw2Af_ZQKaleigh's: (1) Kaleigh Flo...2023-11-2321 minClimbing Mount CMMCThe Mission and Vision Behind Our PodcastWelcome to the first episode of Climbing Mount CMMC. In this podcast, we lay out the foundation and the vision for this podcast. We hope that us documenting our journey will help others following this trail in the future. Thank you for joining our community as we climb the mountain known as CMMC. LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.com/channel/UCaJagoDasNG3MqLqw2Af_ZQKaleigh's: (1) Kaleigh Floyd | LinkedIn2023-11-1613 minClimbing Mount CMMCClimbing Mount CMMC - The TrailerWelcome to the Climbing Mount CMMC podcast. Join us as we climb the mountain of CMMC. Whether your an MSP or a company working with an MSP, you can benefit from this podcast. We are also excited to announce that we will have guests on our podcast who are professional in their fields. These guests include Brian Hubbard, Joy Beland, Amira Armond and many more.LinkedIn: https://www.linkedin.com/in/bobbyguerra/Website: https://www.axiom.tech/YouTube: https://www.youtube.com/channel/UCaJagoDasNG3MqLqw2Af_ZQKaleigh's: (1) Kaleigh Floyd | LinkedIn2023-11-1402 min
podcast de Junio GuerraMadison McFerrin - Run (feat. Bobby McFerrin)Madison McFerrin is a singer, songwriter, and producer from New York. She’s sung with legends like Aretha Franklin, George Clinton, and De La Soul & The Roots. Madison’s first EP came out in 2016, and last week, she released her debut album, I Hope You Can Forgive Me. In the years between the EP and the album, Madison started producing her own music. It wasn’t really her plan, but something that developed over the course of the pandemic. For this episode, I talked to Madison about a song from her album called “Run." It was inspired by the discovery that she...2023-05-1720 min
Kente KornerEp 10: Catching up with the Hoya Hoop ClubBobby and Andrew are joined by HHC president Mark Guerra to talk about the Bahamas trip, what's coming up for the season with the HHC, and NCAA Tournament expectations.
Learn more about your ad choices. Visit podcastchoices.com/adchoices2019-09-1826 min
podcast de Junio GuerraGorillaz - Andromeda (feat. D.R.A.M.)Gorillaz is the creation of musician Damon Albarn and comic book artist Jamie Hewlett. They’re a virtual band made up four animated characters. Their songs are written by Damon Albarn and a roster of collaborators. Since the first album was released in 2001, Gorillaz have sold over 16 million records worldwide. In this episode, Damon breaks down the song "Andromeda" from the 2017 Gorillaz album Humanz. It’s a dance song, but also an elegy to people in his life who he’s lost, like legendary soul singer Bobby Womack, a former Gorillaz collaborator. Andromeda features guest vocals by the rapper and singer...2017-04-1117 min
Texas Tribune EventsA Conversation with Sen. Hinojosa and Reps. Guerra & CanalesAudio from our August 26, 2016 conversation with state Sen. Juan "Chuy" Hinojosa and state Reps. Bobby Guerra and Terry Canales. The event was moderated by Texas Tribune co-founder and CEO Evan Smith.Hinojosa, D-McAllen, has represented Senate District 20 since 2003. He serves as vice chairman of the Senate Finance Committee and sits on the Criminal Justice; Natural Resources & Economic Development; and Agriculture, Water & Rural Affairs committees. Previously, Hinojosa served in the Texas House and in the U.S. Marine Corps during the Vietnam War.Guerra, D-Mission, has represented House District 41 since 2013. He sits on the House Insurance; Public...2016-09-121h 05
TxDOT-Statewide PodcastGuerra: 'We Need to Be Prepared'Last November, lifelong Rio Grande Valley resident Bobby Guerra was sworn into office to finish an uncompleted term in the 41st District of the Texas House of Representatives. Ten months and four legislative sessions later, Rep. Guerra has received a crash course in lawmaking in general, and transportation in particular. In addition to the explosive growth in the region, representing the Rio Grande Valley means representing the area through which a majority of Texas freight must pass en route from the border ports of entry. And that, as the Representative told me, makes the ongoing I-69 project more important than...2013-09-1300 min