Welcome back to GovCon Unscripted! I’m your host, Chelsea Meggitt, and in this episode, I sit down with Fernando Machado, Managing Principal and CISO of CyberSec Investments. Fernando is an authorized CMMC third-party assessor and a LEED Certified CMMC Assessor, bringing his expertise to unpack the complexities of the Cybersecurity Maturity Model Certification (CMMC) program.

We discuss the evolving cybersecurity landscape, covering everything from DFARS clauses and self-assessments to the importance of third-party certifications. Fernando shares actionable advice for contractors navigating these changes, offering insights into preparation, compliance costs, and tools to streamline the process.

If you’re part of the defense industrial base or considering entering the government contracting space, this episode is packed with practical guidance and expert insights to help you navigate the challenges of CMMC and ensure your business is prepared for the future.

In This Episode:

[00:00] - Chelsea introduces Fernando Machado and his expertise in CMMC compliance.

[02:00] - Understanding CMMC and the critical role of DFARS clauses.

[06:30] - Certification vs. implementation: What contractors need to know.

[10:00] - Breaking down costs and timelines for CMMC assessments.

[14:15] - The role of primes in enforcing CMMC compliance across supply chains.

[18:30] - Practical tools and resources for achieving compliance.

[22:00] - Advice for selecting a CMMC assessor and preparing your organization.

[25:00] - The future of CMMC and what contractors should expect.

🎙 Links and Resources:

Chelsea’s LinkedIn Profile

Fernando Machado’s LinkedIn Profile

CyberSec Investments

CyberSec Investments Website