January 22, 2026

CMMC for GSA Contractors?

Listen Later

18 minutes

Defense contractors aren't the only ones who need to implement NIST cybersecurity requirements for CUI. The big question has always been whether other agencies would require proof of implementation via the CMMC program. The GSA just revised their process for assessing nonfederal systems handling controlled unclassified information and it's way closer to NIST's Risk Management Framework than CMMC.

CIO-IT Security-21-112r1 (PDF): https://www.gsa.gov/system/files/Protecting-Controlled-Unclassified-Information-%28CUI%29-in-Nonfederal-Systems-and-Organizations-Process-%5BCIO-IT-Security-21-112-Rev-1%5D.pdf

Summit 7 Live San Diego: https://www.summit7.us/s7live

...more

View all episodes

View all episodes

Download on the App Store

Download on the App Store

Get it on Google Play

Sum IT Up: CMMC News Roundup

By Summit 7

5

1313 ratings

January 22, 2026

CMMC for GSA Contractors?

Listen Later

18 minutes

Defense contractors aren't the only ones who need to implement NIST cybersecurity requirements for CUI. The big question has always been whether other agencies would require proof of implementation via the CMMC program. The GSA just revised their process for assessing nonfederal systems handling controlled unclassified information and it's way closer to NIST's Risk Management Framework than CMMC.

CIO-IT Security-21-112r1 (PDF): https://www.gsa.gov/system/files/Protecting-Controlled-Unclassified-Information-%28CUI%29-in-Nonfederal-Systems-and-Organizations-Process-%5BCIO-IT-Security-21-112-Rev-1%5D.pdf

Summit 7 Live San Diego: https://www.summit7.us/s7live

...more

More shows like Sum IT Up: CMMC News Roundup

Fantasy Footballers - Fantasy Football Podcast by Fantasy Football

Fantasy Footballers - Fantasy Football Podcast

29,464 Listeners

Jocko Podcast by Jocko DEFCOR Network

Jocko Podcast

30,838 Listeners

REAL AF with Andy Frisella by Andy Frisella

REAL AF with Andy Frisella

32,869 Listeners

Security Now (Audio) by TWiT

Security Now (Audio)

2,007 Listeners

CISO Series Podcast by David Spark, Mike Johnson, and Andy Ellis

CISO Series Podcast

192 Listeners

Defense in Depth by David Spark, Steve Zalewski, Geoff Belknap

Defense in Depth

74 Listeners

My First Million by Hubspot Media

My First Million

2,663 Listeners

The Shawn Ryan Show by Shawn Ryan

The Shawn Ryan Show

46,285 Listeners

Cyberspin by Redspin

Cyberspin

2 Listeners

New Heights with Jason & Travis Kelce by Wondery

New Heights with Jason & Travis Kelce

17,911 Listeners

GRC Academy by Jacob Hill

GRC Academy

3 Listeners

Climbing Mount CMMC by Bobby Guerra

Climbing Mount CMMC

2 Listeners

CMMC Compliance Guide by CMMC Compliance Guide

CMMC Compliance Guide

0 Listeners

That CMMC Show by Summit 7

That CMMC Show

2 Listeners

CUI Hotline: Live CMMC Q&A by Summit 7

CUI Hotline: Live CMMC Q&A

0 Listeners