Bravo MSP Collective Team! Thank you Joy Belinda Beland QTE, CISM, CMMC PI CCA for leading this effort and our other members who contributed, especially George Perezdiaz of SP6. This is just an early step and we have much more to do!
VP, Cybersecurity Compliance; QTE, CMMC CCA and Provisional Instructor; Insider Threat Vulnerability Assessor and Program Manager
Today is an important day in the #MSP and #MSSP industry and for the #CMMC ecosystem. Summit 7 has joined together with multiple service providers who are dedicated to serving the DIB as part of the MSPs for the Protection of Critical Infrastructure, and we have authored a position paper on how to scope and assess a service provider against the security controls prescribed at CMMC Level 2. We have submitted the paper as public comment for the CMMC Proposed Rule. Hitting the SUBMIT button on the Federal Register site brings us tremendous pride. We have worked very hard to balance the need for securing our defense contractors with the objective reality of how service providers operate; we took much consideration for how this program can best serve our industry and the CMMC ecosystem. I would like to personally thank George Perezdiaz for his thoughtful collaboration and Vizio skills; as well as the following members of our group who spent countless hours with insightful questions and edits of this important document: Scott Edwards Jacob Horne Stuart Itkin Rob Wilson Saif Rahman Jason Sproesser Caleb Leidy Carly (Carlene) Logan Amy Edwards Derek Kernus, CISSP, CCSP, CCP, MBA Ed Tuorinsky Leia Kupris Shilobod, CCP, CISM Bobby Guerra Jennifer Kaufmann Brian Emerson Full paper link will be added to comments. Note that our goal was not to advise on implementation of controls for service providers; we have focused on how the scoping would apply and how to create a viable assessment program applicable to our industry.
Associate Director - Security Governance Leader - Ernst & Young (EY)
6moWell done.