Move beyond uncertainty and take real, confident steps toward CMMC compliance at CMMC Liftoff 2025. This is the one event you (and every DIB Contractor and MSP) won’t want to miss.
This isn’t just a conference – it’s a launchpad. CMMC Liftoff was built to cut through the noise and deliver what matters most for those facing CMMC regulations: clear answers, proven frameworks, and hands-on time with the people and tools that boost your compliance.
You won’t just sit and listen; you’ll get to work. Scoping your SSP, understanding provider roles, identifying control gaps, mapping out the steps your organization needs to take. And you’ll leave with tangible pieces of your compliance program in place and strategy you can put into action immediately.
Reserve your seat now and take the first step toward CMMC Compliance.
CMMC Liftoff is excited to partner with the Ascend Cyber conference to offer a CMMC CCP course in conjunction with that conference at a special, discounted price! This hybrid course starts with four (4) days of classroom instruction that leads into complimentary access to the CMMC Liftoff conference.
Master the practical skills and strategies to build, price, and scale your CMMC services; from scoping to sales and legal insights.
Get hands-on with your compliance program and learn to manage costs, culture, and contracts to stay ahead of CMMC requirements.
Packed with step-by-step prep strategies, assessor insights, and presentation tips.
CompliancyIT
Queen Consulting & Technologies
DTC Global
Cyber Security Solutions
MNS Group
IntelliGRC
CompliancyIT
Cybersec Investments
Four Inc.
Ascend Cyber
Ascend Cyber
FutureFeed
7:00AM
7:30AM
Speaker: Regan Edens, DTC Global
Focus: : Join us for a focused pre-event session designed to clarify gray areas, provide practical guidance, and come away with a solid understanding of CUI fundamentals and compliance expectations.
Speaker: Horacio Maysonet, Cyber Security Solutions
Focus: : Knowing what to do is important, but knowing what NOT to do is even more important since ONE false move can cause you to fail an assessment.
8:30AM
9:10AM
Speaker: Jim Goepel, Fantom Cyber
Focus: Where we are now with the CMMC Rule, what it really means for your business, and what’s at stake for getting it wrong. This session grounds the Rule in legal and regulatory implications, including real-world consequences, and how to decrease your exposure.
9:45AM
Speaker: Fernando Machado & Toby Musser
Focus: Join Tobias Musser, Co-CEO of MNS Group, and Fernando Machado of Cybersec Investments for a candid look at how Organizations Seeking Certification (OSCs) most often derail CMMC Level 2. Drawing on front-line C3PAO assessment experience, they’ll unpack recurring pitfalls, improper or incomplete documentation, shaky scoping and boundary definitions, blind spots in CUI data flows, “paper-only” policies that diverge from practice, weak evidence hygiene, and overreliance on inherited controls or third-party vendors. Attendees will take away proven best practices to avoid these traps and map a realistic path to success. The session also decodes the newly published 48 CFR and its implications as the CMMC program rolls out. You’ll leave with practical readiness tools, a concise checklist to validate your SSP and artifacts, and steps to prevent last-mile surprises.
10:20AM
10:35AM
Speaker: Camron Deiss, D.T. Gruelle (DIB Contractor)
Focus: Where trust is sometimes lacking between IT/Security Providers and DIB Contractors, as well as the dangers of blindly trusting in this high-risk compliance environment. This session includes real-world experiences and strategies to establish high trust relationships for CMMC Certification success.
11:10AM
Speaker: Matt Titcomb, Peak InfoSec
Focus: Common missteps, false assumptions, and how to recognize when you’re being sold a shortcut that could cost you. This session hits shared pain points for both Contractors and IT/Security Providers.
11:45AM
1:15PM
Speaker: Leia Kupris Shilobod, CompliancyIT
Focus: Map your data flows, validate your scope, and stop wasting money securing what you don’t need to. This Interactive Workshop allows participants to walk away with a clear sketch of their CMMC Scope (people and technology) and leave with clarity to apply the controls, systems, and processes in the RIGHT place, decreasing effort and costs.
1:50PM
Speaker: Joe Sullivan, BPMI (DIB Prime)
Focus: Assessors aren’t just looking for the technical implementation of the controls — they’re looking for ownership, accountability, and maturity. This session focuses on internal governance, team alignment, and how to avoid “checklist” mentality.
2:25PM
2:40PM
Speaker: Stuart Itkin, FutureFeed
Focus: Roll up your sleeves and write some control statements! Get expert feedback, avoid vague language, and walk away with pieces of your SSP actually written.
3:15PM
Speaker: Camron Deiss, D.T. Gruelle and Joe Sullivan, BPMI
Focus: No vendors or ‘talking heads.’ Just real contractors sharing what worked, what flopped, and what they’d do differently.
1:15PM
Speaker: Ace Swerling, CompliancyIT
Focus: What assessors will expect from you as an MSP/MSSP, how to set expectations with your Client for your role in the CMMC Assessment, and how to avoid scoping yourself into a nightmare.
1:50PM
Speaker: Leia Kupris Shilobod, CompliancyIT & Nathan Scott, Queen Consulting & Technologies
Focus: This strategic session for MSP’s shows you how to productize your services, manage scope creep, and know when to say no to limit liability.
2:25PM
2:40PM
Speaker: Ozzie Saeed, IntelliGRC
Focus: You’re responsible for the implementation details — here’s how to write them clearly, correctly, and credibly. This hands-on workshop walks Providers through writing actual SSP implementation statements that pass assessment and are maintainable over time.
3:15PM
Speaker: Stephan Tomecko, CyberQP
Focus: Join the CyberQP team for a deep dive into what it takes to enforce Access Control (AC), Audit and Accountability (AU), and System and Communications Protection (SC) in today’s hybrid AI-driven MSP world.
4:00PM
Speaker:
Bree Burk – Four Inc (DIB contractor)
Leia Kupris Shilobod, CompliancyIT (MSP)
Matt Titcomb, Peak InfoSec (C3PAO)
Stuart Itkin, FutureFeed (GRC Tool)
Focus: Blunt truths, battle scars, and things people won’t tell you in sales calls. Join this session with representatives of the CMMC ecosystem and DIB Contractors for an honest conversation.
4:30PM
4:45PM
14750 Conference Center Drive,
Chantilly, Virginia, USA, 20151