Customer Responsibility Matrix in CMMC
Cuick 10 · Derek White
Audio is streamed directly from the publisher (content.rss.com) as published in their RSS feed. Play Podcasts does not host this file. Rights-holders can request removal through the copyright & takedown page.
Show Notes
In this episode of the Cuick 10 Podcast, Derek White, Chief Operating Officer of Cuick Trac, is joined by Tom Conkle, CEO of Optic Cyber Solutions, to discuss the often-overlooked importance of the Customer Responsibility Matrix (CRM) in CMMC compliance.
Tom shares firsthand experience from CMMC readiness engagements where organizations mistakenly assumed their MSPs had implemented necessary controls—only to discover critical gaps. He breaks down how the CRM acts as a communication bridge between managed service providers and OSCs, what should be included in a CRM, and why documenting shared responsibility is now a requirement under the final rule.
Tune in to learn how better documentation, communication, and ownership can prevent serious compliance failures.