I help Defense Industrial Base contractors achieve and maintain CMMC compliance. As a Lead Certified CMMC Assessor (LCCA) and founder of GetCMMC, I guide contractors through assessment readiness, NIST SP 800-171 implementation, and the practical realities of protecting Controlled Unclassified Information.
My background spans product security, federal service, and hands-on operations: I've built security software at 1Password and Panther, served as a Cybersecurity Digital Service Expert at the Defense Digital Service, and led IT security for a DoD contractor. I've worked across both IT and OT environments, so I understand the systems underneath a control, not just the control itself.
Credentials: LCCA · CCA · CCP · Full CompTIA security stack
- GetCMMC App — track your CMMC readiness and manage assessment progress
- STIG UI — browse and work through DISA Security Technical Implementation Guides
- FedRAMP Explorer — navigate FedRAMP 20x controls and baselines