6 min read
Inside BEMO's CMMC Level 2 Certification: 7 Takeaways From Our Team
BEMO recently earned CMMC Level 2 certification. But behind that announcement was a team of people across security, IT, operations, data, and HR who...
Compliance
3 min read
Security Lessons from a Microsoft Veteran
Bruno Lecoq spent twenty years at Microsoft before founding BEMO. He realized that the small and medium business sector lacked practical...
4 min read
Rethinking Cybersecurity in the Defense Industrial Base
For organizations working with primes like Lockheed Martin or Boeing, frameworks such as CMMC, DFARS and ITAR aren’t optional checkboxes. They are...
4 min read
There’s a Real Cost to “We’re Too Small to be Attacked”
Small and mid-sized companies, especially government contractors, still cling to one comforting belief: “We’re too small to be worth attacking.” But...
5 min read
The CMMC Revolution: How BEMO Is Redefining Compliance.
Bruno Lecoq spent 20 years at Microsoft before co-founding BEMO. He didn’t leave because he disliked the company. In fact, he says he “owes his life...
5 min read
The Hardest Part About Compliance Isn’t Certifications, It’s Discipline
Most companies think the toughest part about compliance is the technology or getting all the right certifications. They’re wrong. The toughest part...
5 min read
CMMC Readiness Requires Business-Wide Ownership
George Dunlop, Founding Partner of Dunlop Security Group and a lead CMMC assessor, explains why the most common mistake in CMMC readiness is treating...
5 min read
The Implementation Decisions That Make or Break Your CMMC Assessment
Most organizations treat CMMC implementation as a technical execution phase. John Christly, VP of Commercial Services & Chief Learning Officer at...
8 min read
How to Validate CMMC Readiness Before Assessment Day
Most teams preparing for CMMC believe their documentation proves they're ready. Karen Connor, a CMMC assessor and consultant with decades of federal...
5 min read
What to Look for in a CMMC Vendor
Not all CMMC compliance claims are created equal. Bryan Lee, Senior Cybersecurity Engineer at Riskcraft Citadel and CMMC Licensed Certified CMMC...
7 min read
Inside the CMMC Assessment Process
Most teams preparing for CMMC think the challenge is technical. Dr. Jeff Baldwin, who trains the assessors conducting those evaluations, explains the...
8 min read
What Your SSP Needs to Pass a CMMC Assessment
A lead CMMC assessor with experience on both sides of the table explains why most organizations fail before assessment day even starts, and what it...
7 min read
CMMC Implementation That Actually Holds Up in Assessment
The tech is rarely what trips teams up during a CMMC assessment. Documentation gaps, missing evidence, and late stakeholder involvement are what make...
4 min read
Jacob Anderson on How to Avoid Common CMMC Level 2 Mistakes
CMMC Level 2 reaches well beyond email encryption and passwords. Jacob Anderson, Founder at Beyond Ordinary Software Solutions, walks through the...
4 min read
Why Compliance Fails Without Real Accountability
If you’ve been through a compliance audit before, this might sound familiar: The audit passed, the report looked clean. Everyone moved on, and yet,...