Cloud Security , Next-Generation Technologies & Secure Development , Security Operations

Leveraging Cloud Services to Accelerate the CMMC Compliance Journey

Stuart Itkin of Coalfire and Tom Wollard of AWS on Challenges to Achieve Compliance
Stuart Itkin, vice president CMMC & FedRAMP Assurance, Coalfire, and Tom Wollard, senior technical program manager for AWS CMMC Go-To-Market team

The Cybersecurity Maturity Model Certification published by the U.S. National Institute of Standards and Technology is critical to U.S. national security and will create the foundation for everything defense contractors do every day.

The requirements for CMMC are exacting and require a skilled and resource-heavy process. But understanding and using cloud services can make it less expensive, less risky, and faster to achieve compliance for Defense Industrial Base companies.

In this videocast, Stuart Itkin, vice president CMMC and FedRAMP Assurance, Coalfire, and Tom Wollard, senior technical program manager for AWS CMMC Go-To-Market team, discuss:

  • The three types of evidence for CMMC assessments, what they entail and how they differ from each other;
  • The challenges to achieving compliance and how to overcome them;
  • How a cloud provider can accelerate the process and how to verify a cloud provider’s claims.

Itkin leads Coalfire's CMMC RPO advisory services and C3PAO assessment services and its FedRAMP 3PAO assessment services for federal. Previously, he was vice president of product management at Boeing, Lockheed Martin, Raytheon Technologies, BAE Systems and Rolls Royce joint venture company Exostar. Itkin has worked closely across the Defense Industrial Base on solutions for supply chain risk management and secure collaboration and has served in leadership roles in several cybersecurity companies, as lead mentor at Virginia's MACH37 cybersecurity product accelerator, and as an adviser and board member.

Prior to AWS, Wollard spent 15 years as the director of federal/DOD cybersecurity compliance for a SaaS cloud service provider. He is a retired United States Marine Corps aviator.

About the Author

Tony Morbin

Tony Morbin

Executive News Editor, EU

Morbin is a veteran cybersecurity and tech journalist, editor, publisher and presenter working exclusively in cybersecurity for the past decade – at ISMG, SC Magazine and IT Sec Guru. He previously covered computing, finance, risk, electronic payments, telecoms, broadband and computing, including at the Financial Times. Morbin spent seven years as an editor in the Middle East and worked on ventures covering Hong Kong and Ukraine.

Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing, you agree to our use of cookies.