CS5 / Official Conference of Cyber AB
Thursday, October 16, 2025
2:20 – 3:10 pm EST
The path to CMMC Level 2 certification is complex, but the requirements are non-negotiable for defense contractors. This expert panel session is designed to pull back the curtain on the CMMC assessment process, ensuring you stop guessing and start focusing on what truly matters to the assessor.
Our objective is to help attendees understand what CMMC compliance truly requires, avoid common mistakes that lead to costly delays, and focus their resources on implementation efforts that assessors value most. This will be a vendor-neutral, objective-focused session providing real-world insights into collaboration strategies, effective risk management, and secure enclave design principles.
Panel Framework and Expert Focus
The session will feature a panel of three leading C3PAO experts: Charles Barley, Jr. of RSM; Kyle Lai of KLC Consulting; and Anthony Giles of NSF, with facilitator Kevin Hancock of Exostar guiding the discussion. The content is structured around the three critical phases of an official CMMC assessment, providing a complete lifecycle view of the process:
1. Pre-Assessment (Anthony Giles, NSF)
This segment focuses on readiness documentation. You’ll gain a deep understanding of the System Security Plan (SSP) and other key documents necessary to provide the C3PAO. This is where you learn to set the proper scope and avoid “false starts” by ensuring your written policies align perfectly with your environment.
2. The Assessment (Kyle Lai, KLC Consulting)
This segment dives into the live audit process. The focus will be on the evidence assessors look for and what your staff needs to know when being interviewed. You’ll get the insider perspective on demonstrating the operational effectiveness of your controls across People, Processes, and Technology.
3. Assessment Follow-Up (Charles Barley, Jr., RSM)
This final segment addresses what happens immediately after the on-site review. It focuses on reporting, the official scoring process, and the proper use of Plans of Action & Milestones (POA&Ms). You’ll learn the strategies for addressing deficiencies and achieving the final CMMC certification.
Key Benefits for Attendees
By attending this expert session, you will:
- Gain Assessor-Level Knowledge: Hear directly from three professionals who conduct official CMMC assessments, giving you the inside track on their focus areas and priorities.
- Avoid Costly Pitfalls: Learn the common mistakes organizations make in documentation (SSP) and evidence presentation that often lead to assessment failures.
- Streamline Your Process: Receive a clear, phase-by-phase roadmap for compliance, helping you allocate resources efficiently and reduce the overall time and cost of certification.
- Build Staff Confidence: Understand how to properly prepare your technical and non-technical staff to confidently answer questions and present evidence during the assessment interviews.
Achieve Final Certification: Learn the rules around POA&Ms and reporting to successfully navigate the close-out phase and formally secure your CMMC Level 2 certification.
Kyle Lai
President and CISO
Lead CMMC Certified Assessor (CCA)
Certified CMMC Professional (CCP)
Provisional Instructor (PI)
CISSP, CSSLP, CISA, CDPSE, CIPP/US, CIPP/G, ISO 27001 Lead Auditor
Nationally recognized as a DoD cybersecurity expert with over 20 years of experience in cyber and I.T., Kyle assesses and architects NIST 800-171 and CMMC compliance solutions for U.S. Defense Industrial Base (DIB) companies. He consulted as a security advisor to several Fortune 500 companies and the DoD. Kyle now specializes in developing cost-effective CMMC compliance solutions for: Manufacturers, Aerospace, Engineering, Software Development, and MSP/IT companies.
Kyle’s distinguished career includes consulting for high-profile clients like ExxonMobil, Zoom, DISA, Boeing, HP, Fidelity Investments, Microsoft, Akamai, and PwC. He served as the former CISO to Pactera (a Blackstone Portfolio Co.) and Brandeis University – Heller School. Kyle was also an operations manager for DISA Cybersecurity Portal (predecessor of public.cyber.mil – a department within the U.S. Department of Defense).
His broad cybersecurity expertise spans security strategy, policies, program management, vulnerability management, penetration testing, incident response, business continuity, regulatory compliance, application security, and third-party risk management. (continues)
The CMMC Final Rule is here, so don’t wait to schedule your CMMC assessment!
Secure your CMMC Assessment spot with KLC Consulting, a authorized C3PAO today with a nominal deposit. Get your price quote now.
About KLC Consulting
KLC Consulting is an Authorized C3PAO specializing in CMMC assessments and NIST 800-171 compliance for the Defense Industrial Base (DIB). Our team of Cyber AB-authorized Lead Certified CMMC Assessors has a combined 75 years of experience in the cybersecurity field, allowing us to deliver objective, high-quality CMMC Level 2 assessments and readiness services for organizations from Fortune 500s to small subcontractors. Read more about us here.
