Kyle Lai of KLC Consulting is a featured speaker at CMMC Implementation Conference 2023 at the University of San Diego, CA. The CIC 2023 event focuses on cybersecurity leaders and service providers who can help your organization understand and meet its CMMC requirements.
Practical Approaches to Testing CMMC Compliance
Self-evaluation can be difficult, but it is the cornerstone of effective assessment preparation and of a successful cyber program. Learn time-proven approaches to building a successful CMMC compliance-oriented testing program.
Once you define your CMMC Scope, you are ready to design your controls and implement your practices. But how do you know if your CMMC controls are designed and implemented appropriately and effectively for different asset types (CUI, Security Protection, Contractor Risk Managed, and Specialized Assets)? We’ll discuss practical ways to test your control design and operating effectiveness to ensure you meet the CMMC requirements.
Key Takeaways:
- What and how to test for CMMC control design effectiveness
- What and how to test for CMMC practices operating effectiveness
- How to create practical test plans
How the C3PAO Assesses YOUR MSP
Kyle Lai, President & CISO of KLC Consulting shares the stage with Scott Singer, CEO of CyberNINES to discuss “How the C3PAO Assesses YOUR MSP” during CIC 2023 in San Diego.
Rather than employing internal IT and cybersecurity staff, many businesses rely on external service providers, like Managed Service Providers (MSPs) and Managed Security Service Providers (MSSPs) to maintain their systems. While that can result in significant cost savings, operational efficiencies, and increased security, it also creates some complexity. For example, the MSP may be “in scope” for at least part of the assessment requirements. In this session, learn from C3PAO Stakeholder Forum members about how their member C3PAOs will be addressing those external service providers.