CISO’s Guide to Future-proofing CMMC Mobility Strategy: Real World Use Cases (L01c)
A Chief Information Security Officer (CISO) of a Defense Industrial Base (DIB) organization is constantly faced with the critical task of fortifying strategies to shield sensitive Federal Contract Information (FCI) and Controlled Unclassified Information (CUI), as well as defending against complex cyber threats and nation-state actors. In addition, the CISO must ensure that all strategies being deployed are CMMC compliant, regardless of the complexity or unique environment.
During this talk, the speaker will discuss four use case examples of scenarios encountered while battling CMMC compliance:
1. In the first use case, a commercial company has CMMC obligations for a subset of users. This includes one set that needs a corporate laptop but doesn’t require access to CUI, and another set that needs a CUI laptop with access to MS GCC-High. The discussion will focus on how to connect these teams without the burden of additional infrastructure and hardware.
2. The second use case involves various organizations with hyper-mobile workforces that need to stay connected. Examples include a healthcare professional on call or a business development representative who travels frequently. The session will showcase how these individuals can stay connected and secure with minimal impact on the IT infrastructure.
3. The third use case addresses a hybrid or fully remote small-to-medium-sized (SMB) business looking to reduce the attack surface for remote workers.
4. The fourth use case pertains to a DIB that aims to support compliance for its applications without the hassle of building out multiple solutions. The discussion will review how the IT team will only need to build one set of corporate applications for Android to achieve compliance.