Announcing GovConEdge Podcast & CMMC 2.0 Episode – January 12

For the 100,000+ companies powering the Defense Industrial Base (DIB), cybersecurity is an imperative. As nation-state actors and cybercriminals continue to target this supply chain for valuable intellectual property, the stakes have never been higher.

With the Cybersecurity Maturity Model Certification (CMMC) 2.0 now a mandatory requirement from the Department of War (DOW), non-compliance is more than just a security risk, it’s a barrier to entry that could lock your business out of the defense contracting market entirely. As of November 10, 2025, DOW contracting officers began including CMMC 2.0 requirements in new solicitations and awards. Compliance is now a prerequisite for winning work.

A 2025 report by CyberSheath found that only 1% of all defense contractors consider themselves fully ready for the official CMMC assessments. With CMMC 2.0 required for any contractor handling Controlled Unclassified Information (CUI) or Federal Contract Information (FCI) for DOW, the question is: Is your business prepared for CMMC 2.0?

Deep Water Point & Associates (DWPA) is prepared to help you navigate this shift. We are proud to announce the launch of GovConEdge, a new podcast series hosted on the OrangeSlices AI platform. Designed to foster deep dives into the GovCon community’s most pressing issues like CMMC 2.0 compliance, GovConEdge features expert insights delivered in a casual, conversational format.

Premiere Episode: What the DIB Needs to Know About CMMC 2.0 Compliance

Our inaugural episode of the new GovConEdge podcast tackles the complexities of CMMC 2.0. We will examine what CMMC 2.0 is and why it presents challenges for companies in the DIB – especially small- to mid-sized businesses – including high costs, limited staff and expertise, complex technical documentation, and a lack of dedicated IT security teams that can distract from core business tasks.

Key discussion points will include:

• Decoding CMMC 2.0: CMMC 2.0 offers more flexible, cost-effective options for basic compliance but demands serious commitment, and potential third-party validation, as your company handles more sensitive national security information.
• How to achieve Level 1 or Level 2 compliance: Discover the crucial difference between CUI and FCI and how it defines your required compliance level.
• Tools and strategies to accelerate your readiness: A wide range of tools is needed to ensure your company is secure and meets CMMC requirements, including governance, risk, and compliance platforms, identity and access management, endpoint protection, AI and automation, among others.
• Some Common Pitfalls to Avoid: Learn how to avoid “over-scoping” your environment and why software alone isn’t a substitute for proper documentation.
• Real-World Insights Case Study: Hear about a small business journey to CMMC readiness, featuring expert tips for your own path.

Event Details: Don’t Miss Out

Don’t let compliance hurdles stand between your business and vital DoW contract opportunities. Join us for this dynamic one-hour session:

Date: Monday, January 12, 2026

Time: 12 Noon – 1:00 PM

Our expert panel includes:

• Moderator: Tom Ruff, Principal, DWPA
• Karlton Johnson, Col, USAF, Ret., Principal, DWPA
• Tony Bai, Chief Solutions Officer, RISCPoint
• Matt Goodrich, JD, Director, Federal Security Compliance, Diligent

Registration: Reserve your spot today!

Don’t let compliance hurdles stand in the way of your company’s growth. Deep Water Point can help ensure your team is prepared, confident, and positioned to win in 2026. If you have any questions about CMMC 2.0 compliance, contact Tom Ruff at tom.ruff@dwpassociates.com.