2025-04-26 –, Track 2
The long-anticipated Cybersecurity Maturity Model Certification (CMMC) 2.0 is no longer just a proposal—it’s officially implemented. Now, defense contractors, subcontractors, and public institutions handling Federal Contract Information (FCI) and Controlled Unclassified Information (CUI) must navigate compliance under a rapidly evolving landscape. But what does this mean in practice?
Building from last year's session, this session will break down the immediate impacts of CMMC implementation, what companies are facing right now, and what's coming next as enforcement ramps up.
CMMC 2.0 is now fully implemented—so what happens next? DoD Contractors that are handling FCI and CUI are now required to meet strict cybersecurity standards, and enforcement is tightening quickly. However, many organizations are still struggling with compliance gaps, data classification confusion, and MSP/cloud accountability. This session will provide a real-world view of how CMMC is rolling out, what prime contractors and the DoD are expecting, and how organizations can avoid costly mistakes.
Jered Bare is a Cyber Security Engineer and serves part time as a Cyber Defense Expert with the Missouri Air National Guard. With deep expertise in CMMC 2.0, NIST 800-171, and cybersecurity compliance, he has educated numerous contractors and institutions through the complexities of securing Federal Contract Information (FCI) and Controlled Unclassified Information (CUI).
Beyond compliance, Jered has an extensive background in cyber threat defense, incident response, and vulnerability management. His expertise has been recognized internationally, including an invitation from the Panamanian government to lead an advanced packet analysis course for threat hunting.