CMMC Compliance Guide
Our experiences inspired the creation of The CMMC Compliance Guide Podcast and its accompanying resources. The podcast began as a way to share what we learned through real-world challenges—like helping that aerospace machine shop—and to provide accessible education for businesses navigating DoD cybersecurity requirements.
The CMMC Compliance Guide Podcast breaks down complex topics like NIST 800-171 and CMMC into actionable, easy-to-understand steps. Whether you’re a subcontractor struggling to meet compliance deadlines or a business owner looking to secure your supply chain, the guide offers practical advice to help you take control of your cybersecurity journey.
Episodes
48 episodes
Why Feeling “CMMC Ready” Isn’t the Same as Passing a Level 2 Assessment
Many DoW contractors feel confident they’re ready for a CMMC Level 2 assessment until assessors get involved. That’s when gaps in documentation, scope, and operational maturity start to surface.In this episode of the CMMC ...
•
Episode 48
•
20:14
CMMC FAQ Update: Timeline, Subcontractor Flowdowns, Enclaves, Cloud Rules, and VDI Scope Explained
The DoW just released updated CMMC FAQs that clarify the rules contractors keep getting wrong. In this episode, Austin and Brooke break down what the new guidance actually says, what it means for your scope, and where vendor and architecture de...
•
Episode 47
•
50:36
How to Triage CMMC Compliance When You’re Overwhelmed and Short on Time
When CMMC compliance starts to feel overwhelming, most companies don’t fail because they lack effort, they fail because they don’t know where to start.In this episode of the CMMC Compliance Guide Podcast, Brooke and Stacey break down wh...
•
Episode 46
•
28:18
CMMC Evidence 101: How to Prove NIST 800-171 Compliance in a Level 2 Assessment
Get your free SPRS Roadmap here: https://cmmccomplianceguide.com/free-sprs-roadmapIn this episode of the CMMC Compliance Guide Podcast, Austin and Brooke break down the #1 t...
•
Episode 45
•
1:11:18
What CMMC Assessors Notice First: Early Red Flags That Fail Level 2 Assessments
What do CMMC Level 2 assessors notice first, sometimes within the first day, before they ever dig into your firewall configs or deep technical testing?In this episode of the CMMC Compliance Guide Podcast, Austin and Brooke break down the...
•
Episode 44
•
44:33
CMMC Paperwork Without the Pain: How to Simplify Policies, SSP, and Evidence (Level 1 vs Level 2)
Most small and mid-sized manufacturers do not fail CMMC because of “tech.” They fail because their documentation does not match how the shop actually runs.In this episode, Austin and Brooke break down how to build CMMC documentation that...
•
Episode 43
•
54:10
How CMMC Became a Competitive Advantage for DoD Contractors
CMMC is no longer just a compliance requirement. It is now a competitive advantage that directly impacts who wins and who loses DoD contracts.In this episode of the CMMC Compliance Guide Podcast, Stacey and Brooke break down how the fin...
•
Episode 42
•
26:09
NIST 800-171 and CMMC 2.0: How Assessors Actually Score You
Are assessors judging you on CMMC or NIST 800 171 when audit day arrives?In this episode of the CMMC Compliance Guide Podcast, Stacey and Brooke break down the real relationship between CMMC 2.0 and NIST 800 171 so you are not guessing ...
•
Episode 41
•
31:17
Top CMMC Myths Debunked: Cloud, Vendors, Firewalls, and MFA Mistakes Explained
Today’s episode of the CMMC Compliance Guide Podcast dives into the biggest myths that machine shops, fabricators, CNC shops, and mid-sized defense contractors still believe about CMMC. From cloud misconceptions to vendor promises that fall sho...
•
Episode 40
•
16:59
Plain English Guide to CMMC Level 1: Basic Cybersecurity Without the Headache
CMMC Level 1 Self- Assessment Guide: https://dodcio.defense.gov/Portals/0/Documents/CMMC/AG_Level1_V2.0_FinalDraft_20211210_508.pdf...
•
Episode 39
•
27:42
Top 12 CMMC Level 2 Requirements Explained: Gap Assessments, Scope, SSP, and POA&M
In this episode of the CMMC Compliance Guide Podcast, Stacey and Austin from Justice IT Consulting walk through the top 12 essentials every contractor needs to achieve CMMC Level 2 compliance especially small and mid-sized defense manufacturers...
•
Episode 38
•
42:31
Cyber AB Town Hall Breakdown: Legal Lessons, Ecosystem Growth, and CMMC Phase 2 Progress
In this episode of the CMMC Compliance Guide Podcast, Brooke and Stacey from Justice IT Consulting unpack the biggest updates from the Cyber AB’s October 2025 Town Hall and what they mean for defense contractors preparing for CMMC certification...
•
Episode 37
•
28:40
Highlights from CS5 East 2025: Operation Midnight Hammer, CMMC Updates, and AI Insights
Get the inside scoop from CS5 East 2025, the largest cybersecurity and compliance event for the Defense Industrial Base. In this episode, Brooke and Stacey from Justice IT Consulting breaks down the biggest CMMC updates, Operation Midnight Hamm...
•
Episode 36
•
46:32
How to Prove CMMC Compliance to Prime Contractors (Before You Lose Contracts)
🎯 Get your Free SPRS Roadmap Session: https://cmmccomplianceguide.com/free-sprs-roadmapOur experts will review your SPRS score, documentation, and setup to help you hit 110 wit...
•
Episode 35
•
26:08
Cyber AB Town Hall September 2025: Key CMMC Compliance Updates
The September 2025 Cyber AB Town Hall dropped big updates for contractors navigating CMMC and NIST 800-171 compliance. In this episode of the CMMC Compliance Guide Podcast, Brooke and Austin break down what the final CMMC rule (Titl...
•
Episode 34
•
33:55
Handling CUI Correctly: Compliance Risks and Best Practices
Worried about mishandling Controlled Unclassified Information (CUI)? In this episode of the CMMC Compliance Guide Podcast, Brooke and Stacey break down what CUI really is, why it matters in defense contracting, and the biggest mista...
•
Episode 33
•
17:06
CMMC Final Rule Explained: Deadlines, Requirements, and Next Steps for Defense Contractors
The wait is over: the Department of Defense has finalized the CMMC rule, officially making it part of DFARS. That means compliance isn’t “coming soon”, it’s now in your contracts.In this episode of the CMMC Compliance Guide Podcast, Aus...
•
Episode 32
•
15:33
The Role of NIST 800-171 in Your CMMC Assessment
Confused about where NIST 800-171 fits into your CMMC 2.0 assessment? You’re not alone. In this episode of the CMMC Compliance Guide, Brooke and Stacey from Justice IT Consulting break it all down in plain English.We cover ...
•
Episode 31
•
29:46
The Truth About CMMC Enclaves: Pros, Cons, and Compliance Risks
Thinking about building an enclave for CMMC compliance? Not so fast. In this episode of the CMMC Compliance Guide Podcast, Austin and Brooke from Justice IT Consulting break down:What an enclave actually is (in ...
•
Episode 30
•
29:27
Are You Really Ready for a CMMC Assessment?
Think you’re ready for your CMMC assessment? In this episode of the CMMC Compliance Guide Podcast, Austin and Brooke break down the difference between being “paper ready” and truly “assessment ready.” From documentation gaps to over...
•
Episode 29
•
31:54
When ‘Not Applicable’ Can Cost You Contracts
Marking a CMMC control as “Not Applicable” might feel like an easy shortcut but get it wrong, and you could fail your assessment, lose contracts, or even face legal trouble.In this episode of The CMMC Compliance Guide, Brooke and Stacey...
•
Episode 28
•
16:51
How to Make Real CMMC Progress: Even if Compliance Isn’t Your Full-Time Job
Schedule your free SPRS Roadmap Session and get a step-by-step plan to close gaps and stay defensible:👉 https://cmmccomplianceguide.com/free-sprs-roadmapIs CMMC just ...
•
Episode 27
•
45:44
What You Missed: June Cyber AB Town Hall CMMC Highlights
48 CFR UPDATE: https://www.ecfr.gov/current/title-48/chapter-2/subchapter-A/part-204/subpart-204.75Missed the June 2024 Cyber AB T...
•
Episode 26
•
31:26
6 Critical CMMC Questions Every Small DoD Contractor Should Know
Are you trying to navigate CMMC and NIST 800-171 with a small team and limited resources? You're not alone. In this episode of the CMMC Compliance Guide, we’re breaking down six of the most common and confusing questi...
•
Episode 25
•
17:30
CMMC on the Shop Floor: A No-BS Guide for CNC & Aerospace Machine Shops
Happy 4th of July from the team at CMMC Compliance Guide Podcast! While you're celebrating freedom, hot dogs, and fireworks — don’t forget about safeguarding the data that defends that freedom. 🛡️In this special edition, we...
•
Episode 24
•
26:51