Hey Everybody,

Along with COVID19, another big buzzword and topic that will sizzle later on this summer is that of the Certified Maturity Model Certification, or CMMC for short.  What exactly is it?  This is actually mandated by the Department of Defense (DoD) that outside contractors must abide by.  In other words, they must have this level of certification in order to gain access to and handle Federal Contract Information and Controlled Unclassified Information (CUI).

But what does all of this jargon actually mean, and what are the ramifications of the CMMC?  Well, we get these questions answered in today’s podcast, as we interview Greg Johnson and Lori Crooks.

Greg Johnson is Founder and CEO of Webcheck Security, a world-class penetration testing and cyber services company.

He loves people and providing solutions with integrity. A BYU graduate, Greg began his technology career in the days of 64k, 5.25” floppy drives and Mac 128k’s. As the industry evolved, Greg moved into the cyber arena and learned a great deal about cyber controls, compliance, data breach and response, and in 2016 earned his PCIP or PCI Professional designation.

Lori Crooks is a Senior Consultant/PM for Webcheck and Founder of Security Compliance Solutions, Inc. d/b/a LB Compliance.

Lori’s deep background includes having managing security and assurance assessment teams at growing cyber firm, A-LIGN, including but not limited to PCI, FISMA, FedRAMP, Penetration Tests, HIPAA, ISO 27001, SOC1 and SOC2. She also served as a Center of Excellence lead for PCI, FISMA and FedRAMP, as well as conducting quality reviews of HIPAA, ISO 27001, SOC1 and SOC2 reports.

Download the podcast at this link: