Go Back Up

DAY TWO 14:00 - 15:00PM TECHNICAL BREAKOUT ONE

CMMC SECURITY: GOING ON THE ATT&CK

PKFOD’s Cybersecurity and Privacy practice works with organizations across the Defense Industrial Base and other industries on both compliance and security-focused initiatives. This provides a unique perspective that has allowed the team to develop compliance strategies that address genuine information security threats, as well as a penetration testing methodology that targets these commonly identified security weaknesses throughout the DIB. This talk features a deep dive into three MITRE ATT&CK techniques that the team has used to compromise DIB companies within the last year, as well as corresponding implementations of specific CMMC requirements that can help to eliminate these real-world attack vectors.

View Slides

About the speakers

ScottGoodwin_Small

Scott Goodwin

Principal – Cybersecurity & Privacy Advisor, PKF O’Conner Davies Advisory, LLC

Scott Goodwin is a team member within PKF O’Connor Davies’ (PKFOD) Business Advisory Group and a Principal in the Cybersecurity & Privacy Advisory practice. He has extensive experience across a wide variety of technical areas including vulnerability and risk assessment, and infrastructure / application penetration testing. In addition, Scott has been working with prime and subcontractors to the Department of Defense since 2015, developing compliance-focused capabilities including RMF, NIST 800-171, and CMMC assessment, information security program development and implementation, and fractional CISO services.