CMMC Spin Newsletter - April 2023

Welcome to our latest newsletter! In this edition, we will be discussing two critical topics for organizations in the defense industry:

1. Joint Surveillance Voluntary Assessment Program (JSVAP) assessments
2. Managed Security Services?

JSVAP assessments offer a valuable opportunity for organizations to demonstrate their commitment to cybersecurity and protecting CUI, and gain a competitive advantage before the Cybersecurity Maturity Model Certification (CMMC) goes into effect. Our CMMC targeted Managed Security Services provide essential capabilities to protect against cyber incidents while meeting compliance requirements and saving on cost and time. Read on to learn more about how these solutions can benefit your organization, and help you gain and maintain federal contracts.?

Do you have a CMMC plan??

No matter where you are on the CMMC path,?we can help. Here's a fresh roundup of resources covering the topics above and more.?

The time to assess is now!

JSVAP Assessments

Redspin is scheduling assessments for late 2023

The Joint Surveillance Voluntary Assessment Program (JSVAP) is now underway, and numerous organizations have already passed an assessment. This program enables organizations to start the assessment process and obtain NIST certification from a Certified Third-Party Assessment Organization (C3PAO) and the?Defense Industrial Base Cybersecurity Assessment Center (DIBCAC). Once given the green light from DIBCAC, Organization's seeking certification (OSCs) can schedule assessments with our team as early as Q3/Q4, 2024 to get started.?

The DIBCAC High JSVAP certificate will eventually convert to a CMMC Level 2 accreditation following the completion of rulemaking. By participating in JSVAP assessments, you can capitalize on significant advantages in the program, rather than waiting for CMMC. As each organization is unique we are happy to have a call with your team to talk through which advantages can best be leveraged by your organization.?

To get started on your JSVAP path,?contact us, or check a few of these resources below:

• (Video)?Lessons Learned from the First Successful JSVAP Assessment
• (Podcast)?CMMC AB Updates: Joint Assessments Are Starting & More!

Upcoming events

Meet with us 1:1, & ask your questions live/in person

• Tomorrow, Thursday, April 20th Join us for a webinar: "CMMC 2.0: The Future of DoD Cybersecurity."?We have teamed up with our friends at 24by7security to share the latest tips and strategies for navigating the complex world of CMMC compliance. Register for the webinar?here
• CMMC Day?is May 15th in Arlington, VA.?If you are attending, don't miss your opportunity to learn about the first two passing JSVAP assessments + how to address the hardest met controls during our sessions and make sure to look for the Redspin booth on the show floor. If you'd like to reserve time to meet with us 1:1 at the show, book a meeting?here

Managed Security Services

Redspin's Managed Compliance and CMMC Readiness solutions are based on the NIST framework and can be implemented on-premise or through Microsoft Azure Government Cloud offerings.

We offer CMMC targeted Managed Services and Managed Security Services that provide essential capabilities to help contractors in the defense industrial base protect against cyber incidents, while also enabling organizations to meet compliance requirements, and save on cost and time.?

• (White Paper)?Learn more about Redspin's services, and our approach

How can we help?

If you have questions about your current CMMC engagement, or where to begin on your CMMC journey, contact us. We'd love to talk.

-The Redspin Team