.jpg)
Climbing Mount CMMC
Our podcast is dedicated to supporting MSPs/MSSPs and the companies that engage with them. We aim to maintain transparency throughout our journey, especially as we pursue our level two certification. While only a few MSPs are actively participating, we hope this podcast will inspire more involvement.
We are also excited to announce that we will have guests on our podcast who are professional in their fields. These guests include Brian Hubbard, Joy Beland, Amira Armond and many more.
Episodes
116 episodes
How to Build CMMC as an MSP
In the season 4 finale of Climbing Mount CMMC, Kaleigh and Bobby share their extensive experience navigating the complexities of achieving CMMC Level 2 certification as an MSP. They discuss the importance of commitment, education, strategic pla...
•
Season 4
•
Episode 30
•
44:27
.png)
The Concept of "Grace" in Building CMMC
In this episode of Climbing Mount CMMC, Kaleigh and Bobby discuss the concept of grace within the CMMC framework, particularly focusing on the NIST 800-171 controls, the role of C3PAOs, and the importance of mock assessments. They emphasize the...
•
Season 4
•
Episode 29
•
36:42
.png)
What Does NIST 800-171 Rev 3 Mean for MSPs?
In this episode of Climbing Mount CMMC, Bobby and Adam discuss the implications of Rev3 for MSPs in the context of CMMC. They explore the challenges MSPs face in achieving compliance, the role of external service providers, and the importance o...
•
Season 4
•
Episode 28
•
20:02
The Importance of POA&M Remediation
In this episode of Climbing Mount CMMC, Bobby and Adam discuss the intricacies of Plan of Action and Milestones (POAM) in the context of cybersecurity assessments. They explore the importance of having a clear understanding of what constitutes ...
•
Season 4
•
Episode 27
•
9:33
.png)
Exploring the 5 Stages of CMMC Grief
In this episode of Climbing Mounts CMMC, hosts Kaleigh Floyd and Bobby Guerra discuss the five stages of grief related to the CMMC compliance journey. They share personal experiences and insights on denial, anger, bargaining, depression, and ac...
•
Season 4
•
Episode 26
•
39:16
.png)
What Classifies an Organization as a Cloud Service Provider?
In this episode, Kaleigh Floyd, Bobby Guerra, and Adam Evans discuss the complexities surrounding Cloud Service Providers (CSPs) and Managed Service Providers (MSPs) in the context of CMMC compliance. They clarify the definitions, roles, and re...
•
Season 4
•
Episode 25
•
21:44
.png)
How to Use ODVs Internally
In this episode, the hosts discuss the significant changes introduced in NIST 800-171 Rev 3, focusing on the transition from Rev 2 to Rev 3, the importance of Organizational Defined Parameters (ODPs), and the role of external service providers ...
•
Season 4
•
Episode 24
•
22:36
.png)
Breaking Down NIST 800-171 Rev 3 Implementation
In this episode, Kaleigh and Bobby are joined by Axiom's own, Adam Evans, to discuss the significant changes introduced in NIST 800-171 Rev 3, focusing on the transition from Rev 2 to Rev 3, the importance of Organizational Defined Parameters (...
•
Season 4
•
Episode 23
•
27:41
.png)
The Right Way to Safeguard Physical CUI
In this episode, Kaleigh and Bobby discuss the complexities of managing Controlled Unclassified Information (CUI) within the framework of CMMC compliance. They explore the challenges of physical boundaries, the role of personnel in safeguarding...
•
Season 4
•
Episode 22
•
49:19
.png)
Is Your Service Provider Prepared for CMMC?
In this episode of "Climbing Mount CMMC," hosts Kaleigh Floyd and Bobby Guerra delve into the intricacies of preparing for a CMMC Level 2 assessment, particularly focusing on the role of external service providers (ESPs) and Managed Service Pro...
•
Season 4
•
Episode 21
•
33:19
.png)
What Does Proper CMMC Self-Attestation Look Like?
In this episode of Climbing Mount CMMC, hosts Bobby and Kaleigh discuss the critical topic of self-attestation for CMMC level two requirements. They explore the evolution of self-attestation, the risks associated with misrepresentation, and the...
•
Season 4
•
Episode 20
•
32:13
.png)
How to Prepare for CMMC in 2026
In this episode, Kaleigh and Bobby discuss the significant changes and challenges that companies will face in 2026 regarding CMMC compliance. They delve into the implications of new CMMC Level 2 requirements, the importance of self-assessments ...
•
Season 4
•
Episode 19
•
37:55
Do I Need to be CMMC Level 2 Certified as an MSP?
In this episode, Kaleigh Floyd and Bobby Guerra discuss the intricacies of change management within Managed Service Providers (MSPs) and its critical role in ensuring compliance with CMMC standards. They emphasize the importance of leadership b...
•
Season 4
•
Episode 18
•
34:19
.png)
Achieving Cross-Team Alignment for CMMC Readiness
In this conversation, Dy Edington discusses the essence of CMMC, emphasizing that it is not merely about following specific procedures but about achieving results with consistency and transparency. She highlights the significance of managing ch...
•
Season 4
•
Episode 17
•
37:15
.png)
Inside the CCP Course as a CMMC Beginner
In this episode, Bobby interviews Axiom's Marketing Coordinator, Maleah Adams, about her experience taking the CCP (CMMC Certified Professional) course. In a brief conversation, they touch on what CMMC looks like from a beginner's perspective a...
•
Season 4
•
Episode 16
•
20:32
.png)
Where to Begin on Your CMMC Compliance Journey
In this episode of Climbing Mount CMMC, Kaleigh Floyd and Kelly Hood discuss the essential steps for small businesses to navigate the complexities of CMMC compliance. They emphasize the importance of understanding the foundational reasons behin...
•
Season 4
•
Episode 15
•
45:37
What to Expect from a CMMC Assessment
This webinar discussion provides an in-depth exploration of the CMMC Level 2 assessment process, including the phases of assessment, methodologies, and the importance of media sanitization and risk assessments. The speakers share their experien...
•
Season 4
•
Episode 14
•
45:37
.png)
The Best Way to Be CMMC-Rollout Ready
In this episode, Kaleigh Floyd, Bobby Guerra, and Vincent Scott discuss the upcoming rollout of the Cybersecurity Maturity Model Certification (CMMC) and the challenges facing the defense industrial base. They explore the readiness of organizat...
•
Season 4
•
Episode 13
•
57:07
.png)
An Assessor's Guide to CMMC Compliance
In this episode, Kaleigh interviews Logan Therrien from Kieri to discuss the role of C3PAOs in the CMMC ecosystem. They explore the importance of proper preparation for CMMC Level Two certification, common pitfalls organizations face during sel...
•
Season 4
•
Episode 12
•
50:08
.png)
What Does NIST 800-171 Look Like in Action?
In this episode, Kaleigh Floyd and Bobby Guerra discuss the complexities of CMMC compliance, focusing on NIST 800-171 controls, self-assessments, risk reviews, change management, and the importance of tools in the compliance process. They empha...
•
Season 4
•
Episode 11
•
44:26
.png)
How to Avoid a "Not Met" During a CMMC Assessment
In this episode, Kaleigh and Bobby discuss the intricacies of the CMMC Level 2 assessment process, focusing on what to do when faced with a 'not met' status. They explore preparation strategies, the role of assessors, the implications of minor ...
•
Season 4
•
Episode 10
•
52:01
Should I Go Through CMMC With My MSP?
In this episode, Kaleigh Floyd and Bobby Guerra discuss the complexities of navigating CMMC Level 2 certification and assessments, particularly focusing on the role of Managed Service Providers (MSPs). They explore the challenges faced by small...
•
Season 4
•
Episode 9
•
43:31
.png)
Cracking the Code of Vulnerability Management
In this episode of Climbing Mount CMMC, Kaleigh and Bobby delve into the intricacies of vulnerability scanning, particularly in the context of CMMC Level 2 compliance for Managed Service Providers (MSPs). They discuss the challenges of vulnerab...
•
Season 4
•
Episode 8
•
35:16
Understanding the Language of CMMC Assessors
In this episode, Bobby and Kaleigh discuss the complexities of navigating the Defense Industrial Base (DIB) space, particularly focusing on the Cybersecurity Maturity Model Certification (CMMC) assessments. They explore the challenges faced by ...
•
Season 4
•
Episode 7
•
37:24
.png)
A Deep Dive Into 48 CFR and How Organizations Can Prepare
48 CFR IS HERE! And we have a lot to talk about. In this episode, Bobby and Kaleigh discuss the recent release of 48 CFR and its implications for contractors and subcontractors working with the Department of Defense (War). They expl...
•
Season 4
•
Episode 6
•
39:37
