Name: CMMC (Cybersecurity Maturity Model Certification) - What, When, Who and Why?
Start: 2021-12-16T22:10:00Z
End: 2021-12-16T22:10:12.000Z
Location: BrightTALK

SureCloud provides Cloud-based GRC Applications and Cybersecurity Services that help our customers achieve an integrated approach to managing their risk, compliance and information security. The SureCloud Platform is simple but powerful technology that gives our customers a single source to view and manage GRC and cybersecurity processes from anywhere in the world. Our customers benefit from automating formerly spreadsheet-driven processes but increasingly from addressing strategic initiatives such as the EU GDPR, ISO 27001, IRAM2, NIST, PCI and others.

Check our CYBERSECURITY content here: https://www.brighttalk.com/channel/17769/ 
Register to our USA channel here: https://www.brighttalk.com/channel/17677/

Join Matthew Davies of SureCloud, and Tom Cornelius, Co-Founder of the Secure Controls Framework, who will be discussing what the SCF are doing to assist organizations in their journey towards compliance and enhanced cybersecurity.

Cybersecurity and the SCF, with Tom Cornelius, Co-Founder of the SCF

Join Matthew Davies and Yang Zheng from SureCloud, who will be discussing the forthcoming UK SOX laws and identifying the key areas that organizations should be focusing on to get ready and to ensure they remain compliant.

UK SOX: What is the purpose and how will it impact your business?

Join SureCloud’s Craig Moores and Hugh Raynor for our latest Cyber Threat Briefing. Craig and Hugh will be discussing the recently released CISO report which highlights the top vulnerabilities which threat actors were able to exploit over the past year.

Examining the CISO Report for Exploited Vulnerabilities | Cyber Threat Briefing

Join Nick Rafferty, Matt Davies and Yang Zheng of SureCloud, who will be discussing ways in which organizations can enhance their third-party risk management operations and practices.

Practical Steps to Improve your Third-Party Risk Management Program

Join Nick Rafferty, Matt Davies and Yang Zheng of SureCloud, for a discussion of the most common third-party risk management challenges that they see on consulting engagements.

To learn more visit https://www.surecloud.com/grc-products/third-party-risk-management

Common Third-Party Risk Management Challenges for Organizations

Join Nick Hayes and Hugh Raynor of SureCloud, for our latest podcast episode in which Nick and Hugh will be discussing and providing practical solutions to cloud-based security challenges.

To learn more visit https://www.surecloud.com/cyber-security-services

Cybersecurity Essentials for Cloud Environments

In this edition of the GRC and Cybersecurity Podcast, Greg van der Gaast, Chief Information Security Officer at ScoutBee joins Matthew Davies, Senior Director of Product Management at SureCloud. Greg and Mathew discuss both the challenges and opportunities that come with being instated as a growing company’s first Chief Information Security Officer, in addition to delving into Greg’s visionary approach to strategic security management.

Making Cybersecurity a Quality Function, Greg van der Gaast, CISO at ScoutBee

Join Craig Moores and Hugh Raynor of SureCloud, for our latest Cyber Threat Briefing. Craig and Hugh will be discussing a recently released report from The UK’s Department for Digital, Culture, Media and Support (DCMS), which examines the prevalence of cyber breaches over the past year.

They cover the following topics: 

- Summary of The DCMS Cyber Breaches Survey 2022
- APTs - Ongoing LAPSUS$ Group Attention
- Continued exposure to SMB vulnerabilities

Register for the next Cyber Threat Briefing here: https://www.surecloud.com/resources/events/cyber-threat-briefing

Interpreting the 2022 Cybersecurity Breaches Survey, DCMS, Cyber Threat Briefing

In this edition of the GRC and Cybersecurity Podcast, Phil Lea, Chief Privacy Officer at Tenth Revolution Group, joins Matthew Davies, Senior Director of Product Management at SureCloud. Phil and Mathew discuss Phil’s role as Chief Privacy Officer - the main challenges he faces and the key initiatives he is undertaking.

Data Privacy & Cybersecurity Challenges, Chief Privacy Officer, Tenth Revolution

Chad Brustin, Lead Security Engineer at Clyde joins Nick Hayes and James Pearce, both Directors at SureCloud, to talk about the Strengthening American Cybersecurity act, which has recently been passed by the US Senate. Our expert panel will discuss the varied implications of the key features within this emerging legislation.

Strengthening American Cybersecurity Act, Lead Security Engineer at Clyde

Join SureCloud’s Risk Advisory Senior Director, Craig Moores, and, Senior Cybersecurity Consultant Hugh Raynor for our latest Cyber Threat Briefing. This Cyber Threat Briefing will focus on the most common and prevalent threats that exist within the current threat landscape, and what organizations can do to mitigate threats and enhance their security posture. Craig and Hugh will be discussing cybercriminal activity linked to the Russia-Ukraine conflict.

Assessing the Russian Cyber Threat Landscape I Cyber Threat Briefing

How does a business stay proactive in managing its risks when the IT and Cyber landscape is everchanging.

Join Yang Zheng, SureCloud’s Senior Director of Customer Success, and Christian Head, SureCloud’s Solutions Advisor, and watch their live demonstration of SureCloud’s IT & Cyber Risk Management solution. See how the tool can help your organization automate and streamline its risk methodologies and activities.

They will demonstrate how you can:

- Document risk and link to associated assets
- Conduct risk assessments aligned to ISO 27005 methodology
- Document threats and vulnerabilities
- Conduct technical security assessments
- Track findings and remediation activities as management of the risk treatment lifecycle

SureCloud Live Demo: IT & Cyber Risk Management Solution

We are living in times of political uncertainty. The increasingly hostile occurrences of recent weeks have far wider implications than many people realize. Cyberwarfare is now a recognized tactic employed by aggressive nation-states, and these cyberattacks can represent a significant proportion of the weaponry used by warring factions. And even civilian businesses and other organizations that seem unconnected to these disputes can become caught in the crossfire. Cyber security experts Nick Hayes and Nick Rafferty from SureCloud discuss the implications of cyber warfare for all businesses, regardless of where they are located and what industry they are a part of. Watch their discussion to learn what the risks are and what you can do to protect your business.

Cyber Warfare- Will It Impact Your Organization And How Can You Stay Safe?

Join SureCloud’s Craig Moores and Hugh Raynor for our latest Cyber Threat Briefing. Craig and Hugh will be discussing the role of Enterprise Architecture for optimizing an organization’s security posture. This Cyber Threat Briefing will focus on the ‘defensive depth’ which many businesses are trying to achieve - robust security measures which are distributed throughout your architecture, which form a series of unique obstacles which prevent attackers from gaining access.

Enterprise Architecture And Its Role Against Security Threats

If your organization has decided to implement a GRC solution for the first time, or has concluded that it’s time to upgrade what you have, then this video is a must-watch! Three industry veterans discuss what they have learned from overseeing countless GRC and Integrated Risk Management implementations, across a wide range of enterprises. Avoid common mistakes by learning what it takes to develop genuine GRC capabilities. Watch this full and frank discussion between SureCloud’s Product Senior Director, Matthew Davies; Senior Director of Customer Success, Yang Zheng and Co-Founder, Nick Rafferty.

Tooling Considerations To Support Your GRC / IRM Programs

Planning and preparing for audits can be a daunting task. Without an integrated Audit Management tool, Audit Managers and Auditors often find their audit activities a time-consuming and siloed manual process.

Join SureCloud’s Senior Director of Customer Success and Solutions Advisor as they present a live demonstration of SureCloud’s Internal Audit Management solution and hear about how it can help your organization automate and streamline its audit processes and activities.

They will demonstrate how you can:

- Document your auditable entities within the audit universe
- Define an annual audit plan and automate deployment audits
- Define standard audit work papers
- Track findings and remediation activities with their associated contents
- Generate audit reports directly from the platform

SureCloud Live Demo: Internal Audit Management Solution

Robin Smith, Chief Security Officer at Aston Martin Lagonda, joins SureCloud’s Matthew Davies for the latest installment of our Leaders in Cybersecurity and Risk series. Robin explains what he is doing to take Aston Martin on a cybersecurity journey that will enhance their information security posture and enable the company to become more productive and profitable. Robin also recounts aspects of his career journey that led to him becoming the CISO of Aston Martin and highlights the most important things he’s learned along the way.

Cybersecurity and Risk Best Practice with Robin Smith, CSO at Aston Martin

Tom Cornelius, Partner at ComplianceForge and Founder of Secure Controls Framework (SCF), joins SureCloud’s Craig Moores to discuss the advent of Cybersecurity Maturity Model Certification (CMMC) 2.0. Craig and Tom will provide an overview of what the second version of CMMC will constitute and will then discuss the practical changes which are associated with the forthcoming release of CMMC 2.0.

CMMC 2.0 – What’s New?

The CMMC is a much talked about and soon-to-be mandatory security standard that any Department of Defense contractor must adhere to. The purpose is to set the bar for security best practices targeted at organizations supporting the Department of Defense. 

This session will discuss the four W’s on CMMC and provide an industry lens on how organizations have already started adapting to the requirement.

The key discussion points are:
1. What is the CMMC? What is needed to meet this new standard? What are the different levels?
2. When will it be enforced from? When will organizations be asked to prove compliance?
3. Who is the CMMC applicable to? 
4. Why has the CMMC come into effect?

CMMC (Cybersecurity Maturity Model Certification) - What, When, Who and Why?

Assurance

Certification

CMMC

Compliance

Cyber Attacks

Defence

Governance

Risk Management

Security

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The unexpected nature of natural disasters and other disruptive events means that preparation is key to managing disaster recovery and business continuity planning. Join the business continuity and disaster recovery community for live and recorded presentations discussing best practices for business continuity planning, disaster recovery programs and business continuity management. Learn from BCDR experts to develop your critical infrastructure and gain insight into tactical solutions to your BCDR issues.

Business Continuity / Disaster Recovery

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Internal audit and compliance professionals are facing increasingly stringent regulatory requirements when it comes to compliance reporting and internal control procedures. Join the audit and compliance community to learn best practices from thought leaders on topics such as regulatory compliance, internal audit checklists and audit program strategies.

Audit and Compliance

The accounting and finance community on BrightTALK features presentations from leading accountants and finance professionals. The accounting community includes tax planning strategies, QuickBooks webinars and other accounting webinars, while the finance community features presentations on financial capital regulations and forensic data analytics. Join the conversation by attending live financial and accounting presentations and connecting with industry thought leaders.

CMMC (Cybersecurity Maturity Model Certification) - What, When, Who and Why?

Presented by

About this talk

SureCloud